Matthew Seyer 🇺🇦 @forensic_matt
DIGITAL FORENSICS - where every bit counts. infosec.exchange/@forensic_matt Colorado, USA Joined April 2010-
Tweets867
-
Followers3K
-
Following764
-
Likes3K
The sans summit is always one of the highlights of my year.
Posting more and more over here. Trying to use it more for my microblogging.
Posting more and more over here. Trying to use it more for my microblogging.
Just an FYI, you can find me over at Mastodon infosec.exchange/@forensic_matt
Rust in the Linux kernel, Rust in Windows DirectWrite, …
These implement a really cool technique for parsing data structures from c headers. This is the type of stuff I love to see and study! great stuff @foxit #DFIR
Speaking of languages, it's time to halt starting any new projects in C/C++ and use Rust for those scenarios where a non-GC language is required. For the sake of security and reliability. the industry should declare those languages as deprecated.
I have an Advanced Persistent Toddler… guess APTs evolve…
I have an Advanced Persistent Toddler… guess APTs evolve…
A business email compromise is an email based #cybercrime in which criminals target and attempt to defraud the business, generally, through wire transfer or wire diversion fraud. Explore our latest blog to learn what you can do to be better protected. bit.ly/3LoEMs4
Any one know of an open dataset (like a ctf) for AWS/Azure/GCP logs? #DFIR
#DFIR internship and full-time openings with KPMG in Dallas and Chicago for students. Apply by September 7. Great team, leadership, projects, training, and tools. kpmgcampus.com/campus/SearchR…
Released at the #DFIRSummit today: New to DFIR Field Manual featuring 10 ways to get started in #DFIR (Free download!) dfir.to/new2dfirmanual
Looking for test data sets? The 2018-2021 @MagnetForensics #CTF datasets are now available on the totally updated NIST #CFREDS site! cfreds.nist.gov
We condemn the Russian government’s military invasion of Ukraine in violation of international law. (1/4)
And another Amcache limitation is documented now: reddit.com/r/computerfore… #DFIR
Ali Hadi | B!n@ry @binaryz0ne
29K Followers 568 Following DFIR and Adversary Simulation | DFIR @ ProtonMail | Perfect Stranger | Stronger Together |Jake Williams @MalwareJake
131K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/himChad Tilbury @chadtilbury
23K Followers 624 Following Digital forensics and incident response. Ex-AFOSI, Mandiant, and CrowdStrike. SANS Institute Fellow and co-author of #FOR500 and #FOR508 courses.Dave Kennedy @HackingDave
207K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Podcast. Fam First/Hacker/CSO/USMC/Intel/Fitness. Motto: Make world a better placeKevin 🤖🕵️🍺 @KevinPagano3
3K Followers 539 Following Curator of many stickers, somewhere amongst the 0's and 1's, @stark4n6Heather Mahalik Barnh.. @HeatherMahalik
23K Followers 2K Following Senior Dir of Community Engagement @cellebrite, @sansforensics Faculty Fellow & author #FOR585 #DFIR, wife,mama, author, researcher, and simply over-scheduled!GI Jane @i_am_the_gia
2K Followers 1K Following Ninja Girl * Firearms * Fitness * K9 Handler * Geek - Opinions are my own - https://t.co/zmWuO22BTaEric Capuano @eric_capuano
10K Followers 3K Following Director @limacharlieio | Founder @recon_infosec | SANS DFIR Instructor | IANS Faculty | https://t.co/yCVDASYk8s | ⬡Magnet Forensics @MagnetForensics
16K Followers 1K Following Official Twitter feed for Magnet Forensics, a global leader in solutions for digital investigations since 2009.DFIR Training @DFIRTraining
16K Followers 721 Following The official DFIR Training account and most complete #DFIR online resource. Managed by @Brett_Shavers.Phill Moore @phillmoore
8K Followers 3K Following This Week in 4n6 // ThinkDFIR // SANS // CyberCX (DFIR) https://t.co/vLyL2sxTuy I might not know much, but I do know how to Google Tweets are mineRyan "Chaps" Chapman @rj_chap
7K Followers 3K Following DFIR & malware analyst. @sansforensics FOR528 Author & FOR610 Instructor. @CactusCon crew. Husband & father. Comments = own.Moose @LitMoose
39K Followers 5K Following DFIR | Violinist | Former medical/vet tech | I work for everyone and no one. Infosec retellings obfuscated. Salty and tired. Also Litmoose on BlueSkyPatrick @Beav_Patrick
1K Followers 2K Following Global Services Partner Manager @ Magnet Forensics. Marine. Former Detective 🕵️♂️ Opinions are my own 👨🏼💻 Marine Corps Cyber AuxAdam @Hexacorn
24K Followers 1K Following Red Brain, Blue Fingers [email protected] https://t.co/Bm0C9KQDDY RIP TwitterZach @svch0st
4K Followers 1K Following Everything DFIR @TheDFIRReport | @CuratedIntel |@CyberCX https://t.co/ggakuKBS0SSoresoez @SoresoezJjNha
0 Followers 346 FollowingRoresearth @RoresearthwSkB
4 Followers 304 FollowingVivian @873148s1QnQ3F4
0 Followers 259 Followingdddf jkfkl @jkfkl63666
40 Followers 116 FollowingPermiso Security Rand.. @PermisoRandall
177 Followers 577 Following @permisosecurity @p0Labs Cloud Threat Research: https://t.co/zs9Jx7rtav Open-Source CloudSec Tools: https://t.co/j5INlo4kBCDaphne Shvey @ShDaphn
53 Followers 5K FollowingIke for Congress, Col.. @Ike4CO
11K Followers 1K Following @USMC Retired, proud father of four, patriot and Democrat running for Congress to defeat @laurenboebert (Use of DOD imagery does not imply endorsement)Nicolette Howie @HowieNicol91769
91 Followers 5K FollowingShaniqua Gladney @GladnShaniq
41 Followers 5K FollowingSesetet @sesetet26647
21 Followers 1K FollowingStephanie Rokus @StephanieR93171
45 Followers 5K FollowingWhayten @whayten30918
49 Followers 2K FollowingLeda Teruel @LedaTerue
39 Followers 5K FollowingLouisa Cutrer @CutreLoui
35 Followers 5K FollowingMichelle @michelle_sparkm
137 Followers 3K FollowingChristeen Pozzi @PoChriste
69 Followers 5K FollowingMeredith Hill @MeredithHi36781
120 Followers 3K FollowingDelicia Hassig @HassiDelici
38 Followers 5K FollowingAref @ArefBlog
5 Followers 97 Following sysadmin trying to remember useful stuff I forget | https://t.co/6hvjmZJy0ySecureYourBytes @secureyourbytes
118 Followers 1K Following .....::::: Siber Güvenlik ve Adli Bilişimin buluşma noktası ::::.....James W. @cyberbiz4
200 Followers 3K Following looking for a cyber position in blue team. Metro Vancouver, Canada. Defender, GIAC x 3, M365, Splunk, AzureOmar Alanezi @Omar_Nsr8
283 Followers 968 Following Cybersecurity Defense Manager. DFIR by day, SANS MSISE graduate student by night. IR | Threat Hunting | APT hunting.Abdelrahman Magdy @abder_aahman
506 Followers 4K FollowingGAMANE Adel @AdelGamane
19 Followers 239 FollowingKkomagum Sr. @KKomagumSr
729 Followers 4K Following ::: Husband:: Father:: ::: Cybersecurity professional:: ::: Leadership & Mgt:: ::: Media. #Cybersecurity #infosec #Esse_quam_videriMarc Flores @marcflores
1K Followers 2K Following A Filipino who loves meeting new people, socialising, new gadgets & works in digital forensics. Also a father to beautiful Isabella. Let's have a chat...Serag Adeen Fouzi @AdeenFouzi
282 Followers 3K FollowingLuis Perez @Cybernuub
35 Followers 88 FollowingEric Fookes 🇨🇭 @eric_fookes
66 Followers 151 Following Founder & CEO at @FookesSoftware. Creator of @Aid4Mail. Expert in #Email #forensics. Loves photography and Finland. Husband & father of two grown-up daughters.bittib010 @Electech18
88 Followers 670 Following Cyber Security Engineer @ Amesto Fortytwo #KQL #DFIR #MemoryForensics #ProgrammingAustin || Lukrativ @Lukrativ508
465 Followers 3K Following 🖥 Cybersecurity | 🔎 Forensics Researcher | 🎶 Musician |🎴Cardboard Enthusiast | ⚽️ T1 Esports Consultant | ⚪️ #1 Jude Bellingham Fan | 🦁OCSC/MUN🔴Ricky Johnson @johnson0844
316 Followers 527 Following 🇺🇸 | 🐔| 📱4n6 | DFIR guy | Avid Gamecocks fan | Team RCSDLauren Oberreiter @chanos24
137 Followers 456 Following Digital Forensics and Threat Intelligence @KPMG_USMudpuppy60 🥃🍺�.. @D_like_the_bird
173 Followers 1K Following Just a man trying to find my way in the world today.Florian Roth @cyb3rops
181K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Ali Hadi | B!n@ry @binaryz0ne
29K Followers 568 Following DFIR and Adversary Simulation | DFIR @ ProtonMail | Perfect Stranger | Stronger Together |vx-underground @vxunderground
294K Followers 212 Following The largest collection of malware source code, samples, and papers on the internet. Password: infectedSANS DFIR @sansforensics
104K Followers 98 Following The world's leading Digital Forensics and Incident Response provider. This feed updates you on latest DFIR news, events, and training.4n6lady @4n6lady
57K Followers 695 Following #DFIR & #BlueTeam | IR & Threat Detection | #OSINT enthusiast | waiting for HL3 | AWS CIRT - my views are my ownJake Williams @MalwareJake
131K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/himChad Tilbury @chadtilbury
23K Followers 624 Following Digital forensics and incident response. Ex-AFOSI, Mandiant, and CrowdStrike. SANS Institute Fellow and co-author of #FOR500 and #FOR508 courses.Dave Kennedy @HackingDave
207K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Podcast. Fam First/Hacker/CSO/USMC/Intel/Fitness. Motto: Make world a better placeSwiftOnSecurity @SwiftOnSecurity
404K Followers 9K Following computer security person. former helpdesk.Kevin 🤖🕵️🍺 @KevinPagano3
3K Followers 539 Following Curator of many stickers, somewhere amongst the 0's and 1's, @stark4n6Heather Mahalik Barnh.. @HeatherMahalik
23K Followers 2K Following Senior Dir of Community Engagement @cellebrite, @sansforensics Faculty Fellow & author #FOR585 #DFIR, wife,mama, author, researcher, and simply over-scheduled!Stephan Berger @malmoeb
24K Followers 2K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eXGI Jane @i_am_the_gia
2K Followers 1K Following Ninja Girl * Firearms * Fitness * K9 Handler * Geek - Opinions are my own - https://t.co/zmWuO22BTaEric Capuano @eric_capuano
10K Followers 3K Following Director @limacharlieio | Founder @recon_infosec | SANS DFIR Instructor | IANS Faculty | https://t.co/yCVDASYk8s | ⬡Chris Sanders 🔎 �.. @chrissanders88
32K Followers 506 Following Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSMMagnet Forensics @MagnetForensics
16K Followers 1K Following Official Twitter feed for Magnet Forensics, a global leader in solutions for digital investigations since 2009.Katie Nickels @likethecoins
54K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]DFIR Training @DFIRTraining
16K Followers 721 Following The official DFIR Training account and most complete #DFIR online resource. Managed by @Brett_Shavers.Phill Moore @phillmoore
8K Followers 3K Following This Week in 4n6 // ThinkDFIR // SANS // CyberCX (DFIR) https://t.co/vLyL2sxTuy I might not know much, but I do know how to Google Tweets are mineArcade DB @arcade_db
296 Followers 1K Following New Gen Multi-Model natively supporting Graphs, Documents, Time-Series, KV, SQL, Cypher, Gremlin, MongoDB queries. Apache 2 Open Source License.Maxime Lamothe-Brassa.. @_maximelb
344 Followers 54 Following Security, LimaCharlie (@limacharlieio) ex-Google, ex-SIGINTJeppson’s Malört @JeppsonsMalort
13K Followers 1K Following Official Twitter for Jeppson’s Malört. Jeppson's Malört has the full-bodied flavor of an unusual botanical. Buy Malört & official Malört merchandise below.Lauren Oberreiter @chanos24
137 Followers 456 Following Digital Forensics and Threat Intelligence @KPMG_USQuiver Quantitative @QuiverQuant
163K Followers 443 Following Bridging the information gap between Main Street and Wall Street. Disclaimer: https://t.co/dIbqx0QC5uTroy Hunt @troyhunt
228K Followers 1K Following Creator of @haveibeenpwned. Microsoft Regional Director. Pluralsight author. Online security, technology and “The Cloud”. Australian.Have I Been Pwned @haveibeenpwned
163K Followers 1 Following Check if you have an email address or password that has been compromised in a data breach. Created and maintained by @troyhunt.RedSense @RedSenseIntel
436 Followers 85 Following Industry-leading intelligence services, adversary space interaction & monitoring, net flow monitoring and interpretation, and custom threat intel programsTroy Schnack @TheBaldJedi
186 Followers 309 Following #Golf, #SyFy, #Science, Digital Forensics #DFIR & #SysAdmin "The true sign of maturity is not caring what other people think."Chris Nickerson @indi303
17K Followers 6K Following I build global cybersecurity companies, Red Teamer, CxO, Investor, Speaker, Mentor, Student, & Sprirt Animal . I'm also a liability #Breachquest #Damovo #LaresChrisO_wiki @ChrisO_wiki
197K Followers 339 Following Independent military history author and researcher. Also at https://t.co/T008p5JDErTatarigami_UA @Tatarigami_UA
171K Followers 102 Following Former UA officer Founder of the Frontelligence Insight: https://t.co/dl7rxu5P0O To support my work: https://t.co/A9oLjGWIYcMalwareTech @MalwareTechBlog
295K Followers 1 Following Not here anymore. Profiles: https://t.co/sFoOuGmYK2Microsoft DART @MicrosoftDART
2K Followers 3 Following We are the Microsoft Detection and Response Team. All things #DFIR #IncidentResponseThe DFIR Report @TheDFIRReport
53K Followers 0 Following Real Intrusions by Real Attackers, the Truth Behind the Intrusion. Services: https://t.co/XW613EKt2wGitHub @github
2.6M Followers 345 Following The AI-powered developer platform to build, scale, and deliver secure software.Colin Finck @colinfinck
224 Followers 252 Following Long-time ReactOS developer and Rust enthusiast, bringing both worlds together Mastodon: https://t.co/ljgsFK2ortErik J. Clarke @ErikJClarke
11K Followers 10K Following Community Advocate. Business Leader. Believer in a Better Future. Views are my own.Mastodon (@Mastodon@m.. @joinmastodon
172K Followers 1 Following Mastodon is the largest decentralized social network on the internet. Built on open web standards by a non-profit. Learn more on our website!Mueller, She Wrote @MuellerSheWrote
753K Followers 15K Following Subscribe to my Substack: https://t.co/obwMdjaJnQ AND THREADS: https://t.co/hDci375oDXCCob🏴�.. @_EthicalChaos_
8K Followers 414 Following Ceri Coburn: Hacker | R̷u̷n̷n̷e̷r̷ DIYer| Vizsla Fanboy and a Little Welsh Bull apparently 🏴 Author of poorly coded tools: https://t.co/P6tT2qQksCLang Sias @LangSias
2K Followers 1K Following Fmr. State Rep & 2022 State Treasurer Candidate. Currently @CSInstituteCO Free Enterprise Fellow.CALL TO ACTIVISM @CalltoActivism
1.1M Followers 2K Following Owned and operated by Attorney Joe Gallina. Newsletter: https://t.co/CalGHt2ALQYamato Security Tools @SecurityYamato
2K Followers 0 Following Tweeting about the latest tool updates from Yamato Security Tools. 大和セキュリティツールについての情報を配信するアカウントです。 https://t.co/PiLgt4IOvVInteger 32, LLC @integer32llc
1K Followers 5 Following We know #rustlang. We can help you evaluate Rust for your problem, build a Rust MVP, and get your developers up to speed. Run by @JakeGoulding & @Carols10centsFox-IT @foxit
15K Followers 315 Following IT-Security company creating special security, intelligence and forensics solutions. Fox-IT is part of NCC Group.Dirk-jan @_dirkjan
25K Followers 175 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.Ruchir Arya @RuchirArya
37 Followers 117 Following Incident Response | Malware Analysis | Reverse Engineering Opinions are mine and not that of my employer. #DFIR #CySec #RE #MADave Luber @NSA_CSDirector
34K Followers 335 Following Director of Cybersecurity at @NSAgov. Follow @NSAcyber for unique, actionable, and timely cybersecurity guidance. https://t.co/Jivn9PjkOMDavid Filiatrault @FireballDWF
134 Followers 212 Following Principal Consultant at AWS Professional Services. As this is a personal account, opinions are my own, and I am not a spokesperson for AWS.Michel de CREVOISIER @mdecrevoisier
842 Followers 101 Following Senior Security Analyst / Threat detection leadResponderCon @ResponderCon
775 Followers 262 Following #ResponderCon: dedicated to helping cyber first responders investigate cyber security incidents. #DFIR #incidentresponseScott Piper @0xdabbad00
18K Followers 326 Following Cloud security historian. Developed https://t.co/ZXFwkuyseC, CloudMapper, and Parliament. Founding team for @fwdcloudsec. Researcher at @wiz_io ✦John Wolfe @JohnWolfeYT
72K Followers 382 Following Exactly! The bones are the skeletons' money In our world, bones equal dollars That's why they're coming out tonight To get their bones from youuuNASA Artemis @NASAArtemis
758K Followers 112 Following With #Artemis, @NASA will land the first woman and first person of color on the Moon. Take the next giant leap with us. Verification: https://t.co/T7VkNRy6NdTristan Snell @TristanSnell
498K Followers 74K Following Lawyer, legal commentator, fighter for democracy. Prosecuted Trump University @ NY AG. Commentator @ MSNBC, CNN. Author of the new book TAKING DOWN TRUMP.Korstiaan @KorstiaanS
391 Followers 327 Following Founder of Invictus Incident Response @InvictusIR | DFIR enthousiast | https://t.co/qgFI02Nro1Information is Beauti.. @infobeautiful
124K Followers 471 Following Data-visualizations & infographics made by David McCandless @mccandelish - app @vizsweet - new project @beautiful__news - https://t.co/oVLj2XZ7nfBeau Bullock @dafthack
17K Followers 683 Following Hacker, trainer, and guitarist | Black Hills InfoSec #RedTeam | @BreakForge Training | Produces music to hack to at @N0BANDW1DTHAJ Van Beest @ajvanbeest
3K Followers 4K Following Let it out until it luffs, then trim it until it stops.Ken Pryor @kdpryor
311 Followers 582 Following Retired cop & DFIR (expired GCFA). Now working as a college IT guy & loving it. Auto racing fan, wannabe guitar player.Mighty Stimp @MightyStimp
22 Followers 139 Following I used to carry the Voice of Reason, but no one wants the truth. So now I spew opinions and slap sense into stupid people.#Stark4N6: Forensics StartMe Updates (12/1/2023) #DFIR stark4n6.com/2023/12/forens…
The final open access version of our @DFRWS APAC paper "ChatGPT for digital forensic investigation: The good, the bad, and the unknown" has been published in FSI: Digital Investigation. Accessible for free here: authors.elsevier.com/sd/article/S26… #infosec #DFIR #forensics #chatgpt
Looks like Chainsaw can now parse ESE databases and correlate SRUM now #DFIR github.com/WithSecureLabs…
Hayabusa 2.8.0 released with two new "X" options. (Not to celebrate the unfortunate renaming of twitter...we just ran out of letters 😊) -x will carve evtx records from empty pages thanks to @forensic_matt and -X will perform de-duplication of detections.
Paging @LitMoose and @forensic_matt.
YES, THE WAIT IS FINALLY OVER. Malört posters have just dropped on our merch website. Make your Malört house a Malört home and chose from various slogans and sizes (or just get all of them). Available now at the link in our bio 🥃
Here is the presentation to our talk on Yamato Security tools for the SANS DFIR summit last week: github.com/Yamato-Securit… Info about our tools and how you can now efficiently process almost 100GB of evtx in less than 30 minutes for time-critical large scale incidents.
Glad another productive #DFIRSummit is in the books. Always great to see friends, make new friends, and have a fun time in a fun city. Also, very happy (slightly early) birthday to none other than @PSYber_Jen, who was living her best life, and we were just there for it!
Had a great day Keynoting the SANS DFIR Summit this past week, but now very much looking forward to Vegas to Speak at Blackhat and keynote the Recon Village at Defcon. If you're going to be around and want to chat about OSINT, hit me up!!
@forensic_matt Your talk was amazing!! Thank you!
This is one way to end the #DFIRSummit, a win for the authors of Hitchhiker's Guide to DFIR!!! @bunsofwrath12
@c0ntrol_z @sansforensics @forensic_matt When your job is to Seek Truth, not just today or tomorrow, but for as long as it’s needed, open source parsers are the only sustainable path forward. It’s why the @sleuthkit is so important, it’s why we contribute bug fixes back, it’s why we invest in our own open source tools.
@c0ntrol_z I was so stoked at the @sansforensics Summit to see Yamato’s Hayabusa and @forensic_matt’s EBS… thinger…, both open source Rust projects. Fantastic stuff!
🚨 NEW: I’m leading the charge to block Members of Congress from getting paid until Congress fixes the debt ceiling crisis. Hyper-partisanship is jeopardizing our economic strength and the economic security of the American people — and lawmakers should not be rewarded.
I told you that the angriest voices in Congress are mostly faking - that they’re just auditioning for certain news shows. Then Newsmax decided to prove my point. Watch:
@chadtilbury @vikas891 Hi Chad, artifacts from more RMM tools and sync tools can be found on the following slides. #DFIR jsac.jpcert.or.jp/archive/2023/p…
And so are the people that support Putin both domestically and internationally.
The hands of Vladimir Putin and Russian armed forces are stained with blood.
Major Richard A. Star was a decorated Veteran who was medically retired due to his combat-related injuries. I'm cosponsoring bipartisan legislation in his honor to cut red tape and make sure ALL combat-disabled Veterans receive the benefits they earned in service to our country.
Thank you @POTUS & 🇺🇸 people for the new defense aid package. HIMARS rockets, 155mm shells, HARM missiles & other items worth $350 million are a great contribution to repelling the invaders. We appreciate 🇺🇸 support in 🇺🇦’s fight against RF's aggression! bit.ly/3yRxK9D
I asked Virginians, “Should Members of Congress, their spouses, and their dependent children be able to personally buy, trade, or sell individual stocks while in office?” More than 92 percent said NO. Read a few of the more than 1,900 responses we received to our survey: