Animalware @ReEnElec
Reverse engineer, hardware developer and Amiga fan boy Joined August 2015-
Tweets2K
-
Followers46
-
Following536
-
Likes231
We’re seeing a clear trend: attackers are bypassing the endpoint entirely. Not just avoiding traditional EDR-monitored systems by pivoting to embedded and edge devices, but now also operating purely in the cloud. No shell, no malware, no persistence on the endpoint. Just an OAuth…
We’re seeing a clear trend: attackers are bypassing the endpoint entirely. Not just avoiding traditional EDR-monitored systems by pivoting to embedded and edge devices, but now also operating purely in the cloud. No shell, no malware, no persistence on the endpoint. Just an OAuth…
🚨NEW: Elon Musk has called Senator Mark Kelly (D-AZ) a “traitor” after visiting Ukraine this weekend. Kelly is a 25-year U.S. Navy pilot veteran and retired astronaut. RETWEET if you stand with @CaptMarkKelly against Elon Musk’s unpatriotic attacks!
A specialized build of `curl` that mimics the behavior of browsers like Chrome,Firefox, and Safari to avoid anti-bot measures in web scraping and automated HTTP requests
Just released SCCMHound! A BloodHound collector for SCCM. SCCMHound allows both attackers and defenders to construct BloodHound datasets using the vast amount of information that is stored/retrievable through SCCM. Feel free to take it for a spin! github.com/CrowdStrike/sc…
onedrive.exe (phoneactivate.exe #lolbin) side-loads tampered sppc.dll which in turn loads onedrive.dll and decrypts it with RC4 systemfunction033 and hardcoded key. The decrypted payload appears to be related to #havoc (h/t @embee_research @elasticseclabs) with the mentioned C2.
onedrive.exe (phoneactivate.exe #lolbin) side-loads tampered sppc.dll which in turn loads onedrive.dll and decrypts it with RC4 systemfunction033 and hardcoded key. The decrypted payload appears to be related to #havoc (h/t @embee_research @elasticseclabs) with the mentioned C2. https://t.co/7wj1k4T0RY
"Swiss-army tool for scraping and extracting data from online assets, made for hackers"
Give this a look, it’s called GHOSTS, it allows you to simulate/automate different types of user traffic/activities. Normally used cybersecurity testing, it might work for what you need. github.com/cmu-sei/GHOSTS
Give this a look, it’s called GHOSTS, it allows you to simulate/automate different types of user traffic/activities. Normally used cybersecurity testing, it might work for what you need. github.com/cmu-sei/GHOSTS
Whenever I’m checking RDP logs and wonder if a full GUI was obtained, I often refer back to this excellent article by Ponder The Bits on RDP event log tracking: ponderthebits.com/2018/02/window…
I know quite some people within my followers that are representing their tooling(s)/platform/organization related to infosec/threat hunting. Lets use this post to “advertise” the purpose of your tooling/platform usage so others can possibly hop in the train to learn new things!
📝 Just published a quick blog post: "Unintentional Evasion: Investigating How CMD Fragmentation Hampers Detection & Response" A recent investigation prompted me to share some quick thoughts on the topic of command line omission and fragmentation in Windows CMD, which can…
Mandiant released CAPA Explorer, a UI to explore CAPA results! This is pretty cool, well done @williballenthin and all! 👏 👉 mandiant.github.io/capa/explorer#… #malware #infosec #malware
I've open-sourced my Docker #honeypot logs from the past few years. The honeypot emulated a publicly accessible Docker instance (no SSL or auth) and logged requests. github.com/silascutler/do…
Hello defenders 🎯 So excited to release second blog about #AiTM Hunting! This time, I wrote about using #KQL hunting queries to detect AiTM activity in a Unified Security Operations Platform. I co-authored this blog with Arjun Trivedi🚀🚀🚀 ✔️Blog : techcommunity.microsoft.com/t5/microsoft-s…
Great talk from Jessica Wilson on open-source #DFIR tools and workflows! - "Forensic Flows, but make them better" youtu.be/oiPumjLLpKk?si…
🚀Introducing OpenRelik: Open-source platform for digital forensic investigations. Modular workflows, collaboration, central artifact repository and easily extendable to support new tools in a clean, easy to use interface. openrelik.org
When we respond to large scale compromise, we regularly see the same kinds of configuration issues across Entra ID. If you want some insight to what we see in real world compromises, I put together an overview here - microsoft.com/en-us/security…
Super excited to finally release a project I have been working on for the last few months! 🎊🎊 Introducing the REx: Rule Explorer project and Detection Engineering Threat Report (DETR) 🎉🎉 br0k3nlab.com/posts/2024/07/… If you found LoFP from lolol.farm useful, this…
I've just resolved all broken API endpoints in DefenderHarvester. Most endpoints were changed on the backend, the downside of tapping into unofficial API's I guess :D Also, added an option to retrieve all configured suppression rules. github.com/olafhartong/De…
The video of my #RSAC talk is out. Anyone interested in #ThreatHunting will want to check out it! "I Screwed Up Threat Hunting a Decade Ago, and Now We're Fixing it With PEAK" buff.ly/3zrKSWJ
Thinkst Canary @ThinkstCanary
13K Followers 10K Following Most companies only realise they are breached when informed by a 3rd party. This is a stupid problem! Thinkst Canary. Know. When it Matters.
Josh Stroschein | The... @jstrosch
12K Followers 1K Following Reverse engineer at FLARE/@Google | @pluralsight author | 😱 1M+ views on YT | 🎙️ Host of Behind the Binary podcast 👇
Carol @carolstokes42
230 Followers 3K Following
Obinna Ozoejike @OOzoejike
70 Followers 477 Following Seasoned Analyst, Realtor and Principal Consultant @ Fourwinds Shelters Ltd, Politician, Husband, Father, Realist, Youth and Community Leader,Telecom Expert.
USER04725852 @user04725841960
0 Followers 3K Following
Mary Selles @mcselles
174 Followers 5K Following ⌨SysAdmin Soul🖱💕 turned into Security & TI🕵️. 😈Curious about criminal minds ✨ Crazy about TAs, TTPs, M4lware and T00ls. 🌍🚀Tweets are my own 💫
Curt Wilson, human @curtw
3K Followers 5K Following Exploring systems security since 1985. Malware+{cybercrime/espionage} analysis, threat intelligence + full-spectrum tech security research. Personal account.
clidetail @clidetail
57 Followers 1K Following Follow us to understand the #commands out of line. 🗺️ Better #Manual ! Better world! #linux #manpage #cli #hack #unix #bsd #opensource
Dmitry Vostokov 🇮�... @DumpAnalysis
8K Followers 6K Following Diagnostician. Author of Diagnomicon. Gang of One. Software Surgeon. Machine Learning and AI for Software Diagnostics and Observability. Generative Debugging.
LimaCharlie @limacharlieio
2K Followers 680 Following Security tools and infrastructure on-demand. Use LimaCharlie to automate and manage security operations at scale.
omzeembetts @omzeembetts
76 Followers 401 Following I’m here looking for good and lovely friends here. And to also knows much about the world 🗺
priapo @priapo
302 Followers 736 Following
Payam Poursaied ⛷�... @payam124
297 Followers 436 Following کارمند روی برف، یابنده مشکلات، بازخورد دهنده تیر، میگویند آموزشدهنده خوب، لینوکس باز سابق، افزایش دهنده ارتباطات، مستند کننده سوابق، دوستدار کد پیشگان و ...
Wolpertwo 📯 @Wolpertwo
1K Followers 3K Following „Westoid Cyberhawk“ Remember to talk to your CISO about activating EventID 4688 with commandline logging via GPO. Забирайся звідси, Сталкер
Sven Ulke 🐷🟪 @n3x771
226 Followers 863 Following #DFIR #Malware #ThreatIntel #Python #Golang #DFIRTrack #GIRAF 🐷🟪
0x4143 @0x4143
2K Followers 5K Following Purple Teaming by day, Malware Hunter by night 🏴 (All opinions are my own, not of my employer)
bitdressing @jkbkw
1 Followers 4K Following
Black Lotus Labs @BlackLotusLabs
3K Followers 586 Following The official Threat Research and Operations arm of @lumentechco. Providing #ThreatIntelligence to help protect our customers and keep the internet clean.
Samir Bennacer @BennacerSamir
134 Followers 950 Following
Andrii Bezverkhyi @andriinb
3K Followers 2K Following inventor of Uncoder IO & AI, #threatbounty #sigma and @MITREattack addict, founder & CEO @SOC_Prime personal account, all opinions are my own. he/him 🇺🇦
Vector 35 @vector35
10K Followers 2K Following Makers of the Binary Ninja - Reverse Engineering Platform. https://t.co/opkys50srq Also posting at https://t.co/2HEfgOtSSR
Axoss Cybersecurity A... @AxossAcademy
854 Followers 4K Following #HumanwareHardening 🐞 #CISSP #CCSP #CSSLP #Security #Training #ISC2 #SoftwareSecurity #CloudSecurity #devsecops
Tommi @pernila
777 Followers 3K Following Binary computing units, FreeBSD, HardenedBSD, OpenBSD, Hacking, Team LeftOvers, HiFi, Freediving, Music and Movies
c0n1c @c0n1c
416 Followers 1K Following #Threat Intelligence, #OSINT, #Phishing specialist and Incident Response analyst at @Sivotis. All opinions expressed here are mine only.
daniel chrastil @DisK0nn3cT
3K Followers 2K Following hacker. automation expert, red teaming, python junkie. social engineer. bug bounty. Christian. father.
Ely Kahn @ElyKahn
2K Followers 3K Following VP Product at SentinelOne. x-AWS. Co-founder of threat hunting startup, Sqrrl (acquired by AWS); x-Dir of Cybersecurity at White House
Pierre B. @Horgh_rce
1K Followers 947 Following French guy interested in reverse engineering / malware analysis / threat intel.
icanhaspii @icanhaspii
2K Followers 5K Following #Malware #Ransomware #DFIR #InfoSec #CyberSecurity #ThreatHunting #ThreatIntel #ForeverN00b #Mennonite Personal page, views don't represent employer.
J. Saavedra @headhunterintel
178 Followers 2K Following Intel Talent Acquisition always looking to network with technology professionals in security, sales, malware, devops, machine learning, datacenter, cloud
Andrew Case @attrc
28K Followers 4K Following @Volatility Core developer, Dir. of Research @Volexity, @lsucyber, The Art Of Memory Forensics Co-Author
Emir Şafak İnanoğl... @InanogluEmir
12K Followers 9K Following BEŞİKTAŞ'IN PEŞİNDE, ATATÜRK'ÜN İZİNDE... NE MUTLU TÜRKÜM DİYENE! 🦅🦅🦅🇹🇷🇹🇷🇹🇷 Evli, Mutlu ve Çocuklu ❤️
Josh Stroschein | The... @jstrosch
12K Followers 1K Following Reverse engineer at FLARE/@Google | @pluralsight author | 😱 1M+ views on YT | 🎙️ Host of Behind the Binary podcast 👇
Bryson 🦄 @brysonbort
19K Followers 495 Following 🦄 @scythe_io @grimmcyber, Sr Advisor @IST_Org, NatSec Inst Sr Fellow, Co-Fdr @ICS_Village, @c2_matrix co-creator, USMA Science Board, Angel Investor, US Army
NSTRIKE @NSTRIKE1231
13K Followers 2K Following 🇬🇪🇺🇸🇺🇦🇮🇱Military and geopolitical news and analysis.
Dave Kennedy @HackingDave
223K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
The Vertex Project @vtxproject
3K Followers 4K Following On a mission to create an intelligence-driven future with Synapse.
Thinkst Canary @ThinkstCanary
13K Followers 10K Following Most companies only realise they are breached when informed by a 3rd party. This is a stupid problem! Thinkst Canary. Know. When it Matters.
J⩜⃝mie Williams @jamieantisocial
10K Followers 7K Following threats && stuff || #UNC1799 forever 🤘|| @DistrictHeather ♥️ + 🍷 **𝚅𝚒𝚎𝚠𝚜 𝚎𝚡𝚙𝚛𝚎𝚜𝚜𝚎𝚍 𝚊𝚛𝚎 𝚖𝚈 օ𝚠𝚗**
JS0N Haddix @Jhaddix
167K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. Cybersecurity + Hacking + AI + Sec Leadership @arcanuminfosec
payloadartist @payloadartist
42K Followers 284 Following Yapping about AI, AppSec, Hacking, & Cybersecurity • Helped secure organizations like Google • Opinions are my cat's • Part-time shitposter
vxdb @vxdb
18K Followers 421 Following Journalist | Cybercrime News | Signal - vxdb.99 | PGP - https://t.co/VWwniNXrEc
Iceman @herrmann1001
8K Followers 1K Following RFID hacker, Proxmark, NFC & EMV | Magic moon beans | Four spaces instead of Tab | https://t.co/A6rzUPpPs6 https://t.co/dZD52FgCaL
414 Magyar's Birds @414magyarbirds
25K Followers 31 Following Official account of the 414th Separate Unmanned Strike Aviation System Brigade "Magyar's Birds". The cutting edge of Ukraine’s drone warfare. Combat approved.
Last Week in Security... @lastweekinfosec
2K Followers 0 Following Automated tweets on the publication of the Last Week in Security blog.
(((Tendar))) @Tendar
417K Followers 853 Following Tyrants are my enemies | Si vis pacem para bellum |🇩🇪🇪🇺| Das Böse triumphiert allein dadurch, dass gute Menschen nichts unternehmen |Military & History
Jason Jay Smart @officejjsmart
134K Followers 349 Following 2010 Russia lifetime ban for anti-Putin work. Джейсон Джей Смарт, PhD. Correspondent @KyivPost. Check out more: https://t.co/5Jw4mTsJhj
MAKS 25 🇺🇦👀 @Maks_NAFO_FELLA
302K Followers 7K Following ☕️ https://t.co/lxtbRwTMwv 🇺🇦PayPal: [email protected] 👀 https://t.co/rMYZMXe53H
Apollyon @0xApollyon
1K Followers 55 Following Infosec | Cryptography | Development | 2007 born | Opinions my own
Värmepump.se @varmepump_se
72 Followers 8 Following Jämför värmepumpar i en kostnadsfri offerttjänst som hjälper dig att hitta rätt värmepump för din bostad.
solst/ICE @IceSolst
21K Followers 2K Following Pentester turned seceng turned meeting canceller - https://t.co/5hHG2R5lRS (-13$ ARR)
Tracecat @TracecatAI
584 Followers 2 Following Open source Tines / Splunk SOAR alternative. All-in-one automation for security and IT teams. https://t.co/6iN3SXSuoO Backed by Y Combinator.
Kijo Ninja @kj_ninja25
2K Followers 97 Following Security PM, R&D @Microsoft - Microsoft Defender XDR, Kijo Ninja 🥷 #修行中 - learning C/C++ #Triathlete 🏊♂️ 🚴 🏃♀️ My tweets are my own
Johan Berggren @jberggren
2K Followers 587 Following DFIR @Google :: I write open source tools :: Creator of OpenRelik and Timesketch :: Tweets are my own @[email protected] on Mastodon
Yamato Security Tools @SecurityYamato
2K Followers 0 Following Tweeting about the latest tool updates from Yamato Security Tools. 大和セキュリティツールについての情報を配信するアカウントです。 https://t.co/PiLgt4IOvV
Eric Woodruff | MVP |... @ericonidentity
2K Followers 712 Following Security researcher @SemperisTech. Microsoft Security MVP, Entra nerd. Part-time hiker, full-time dad and partner. Opinions expressed are from my cat.
WatchingRac @RacWatchin8872
2K Followers 195 Following Threat Intelligence. My Opinions Thanks @silentpush, @censysio, @ValidinLLC, @anyrun_app for making my research easier.
mnemonic @mnemonic_sec
359 Followers 5 Following mnemonic is a leader in 24x7 Managed Detection and Response (MDR) services, incident response, threat intelligence and risk management.
Corsin Camichel 🌻 @cocaman
4K Followers 773 Following it security & cyber guy, research @ https://t.co/M5rsSPPPWy, friendly, swiss | Opinions are my own | also https://t.co/v6cAL269P7
Aura @SecurityAura
6K Followers 651 Following GCIH, GCFE, GDAT | DFIR, TH, DE | @CuratedIntel DFIR https://t.co/BMWUwziTLh https://t.co/MmX2YNVqdk https://t.co/R20zseQfLk
Keanu Nys @RedByte1337
897 Followers 74 Following Offensive Security Lead @ Spotit. Creator of GraphSpy
thaddeus e. grugq @thegrugq
128K Followers 416 Following Hacker :: PhD researcher @warstudies @KingsCollegeLon :: [email protected] :: PGP https://t.co/dYipV8y3bo
Richard Bejtlich 💾... @taosecurity
56K Followers 38 Following Inactive on Twitter since 1 November 2022. Find me here: https://t.co/9xgPCjr0Rq
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Intel-Ops @Intel_Ops_io
2K Followers 4 Following Adversary Infrastructure Hunting & Training Curated Threat Intelligence Feed (Coming Soon) https://t.co/N9OKrTrvV0 https://t.co/3YFZfEbgpI
Dirk-jan @_dirkjan
28K Followers 206 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
Dr. Nestori Syynimaa @DrAzureAD
20K Followers 2K Following Principal Identity Security Researcher at Microsoft. Ex-Secureworks. (MSc, MEng, PhD, CITP, CCSK). And yes, opinions are my own ;)
evan j @ejcx_
7K Followers 1K Following 👾👾 Co-Founder of @RunReveal . 🐄🐄 Former Cloudflare Sr. Director of Security Engineering. JMU Double Duke. There's always more to learn.
Adel Ka @0x4D31
4K Followers 2K Following security engineer @OpenAI | ex-google. views are my own, not my employer's!
Josh Brower @DefensiveDepth
2K Followers 730 Following Husband, Father. InfoSec. SANS GSE #143. Course author of https://t.co/gsqUMkX4MX. Lover of History, Coffee, and D&D. Chaotic Good. He/Him
Bert-Jan 🛡️ @BertJanCyber
4K Followers 563 Following CSIRT | https://t.co/Tu1l2ZFe0T | Microsoft Security MVP | Blue & Purple Team | SOC | SIEM | Threat Hunting | Detection Engineering | #KQL |
watchTowr @watchtowrcyber
9K Followers 13 Following watchTowr enables organizations to get ahead of in-the-wild exploitation with Preemptive Exposure Management technology.
Ransomware Victims @IntelVictims
819 Followers 8 Following Blueskyでもご利用いただけます。 https://t.co/0JUaYAoxhF Mastodon https://t.co/nIe1dsx4vk
Bad Sector Labs @badsectorlabs
8K Followers 503 Following Cybersecurity news, techniques, exploits, and tools every week at https://t.co/UgKmeEEjIV 🐘 @[email protected]
Wes Lambert @therealwlambert
2K Followers 283 Following Lead Engineer, NSM @Target Github: https://t.co/tmQk6TbWMr https://t.co/5KDnHsdBlV Mastodon: @[email protected]
Doug Burks @dougburks
6K Followers 545 Following I post mostly about Security Onion and OhMyDebn. Believer, husband, father, Founder and CEO of Security Onion Solutions, Co-founder of BSidesAugusta.Trends for United States
You might like
