Mike Cohen @scudette
Digital Paleontologist, digging deeper Joined September 2009-
Tweets474
-
Followers784
-
Following170
-
Likes727
At @AusCERT conference we presented "Sigma and Detection Engineering with @velocidex Velociraptor". Learn how to implement real time Sigma detection with forensic enhancements. Full presentation youtube.com/watch?v=3EBrpF… and slides docs.velociraptor.app/presentations/…
Looking forward to speaking on a panel at the @rapid7 Take Command Summit. Register for free below as we talk about between pen testing, red teaming and the benefits of running regular security exercises. rapid7.brighttalk.com/?utm_source=re…
Velociraptor release 0.73 is now available for testing! Read about all the cool new features here docs.velociraptor.app/blog/2024/2024… . An exciting new feature is built in timelining capability. Check the blog post here docs.velociraptor.app/blog/2024/2024…
We just re-published a cool blog post, on the Velociraptor Blog, by Chris Hayes from @RelianceCyber . The post illustrates the process of setting up Velociraptor using external certificates. docs.velociraptor.app/blog/2024/2024… Original post reliancecyber.com/secure-velocir…
Great example of VQL automation!
The incident started with a compromised server. When we extended the hunting to the entire network, we found traces of the "WayBack" campaign on a computer, which @yoroisecurity documented almost exactly three years ago [1]. We also found the exact same code as in the blog on…
I was so excited about the new 0.72 release of Velociraptor I just could not wait to make a quick video to show you all the new features! #velociraptor #dfir #digitalforensics Check it out here youtube.com/watch?v=FwmFYm…
Version 0.7.2 of @velocidex is now fully available for download! Learn what's new 👉 r-7.co/3WliUVJ
Only a few days left to secure your early bird for our Velociraptor training in Singapore. This is a rare opportunity to learn about Velociraptor and how to deploy it effectively, develop VQL artifacts and actively hunt for adversaries. blackhat.com/asia-24/traini…
#100daysofyara targeting QuasarRAT via namespace strings observed in process memory and decompiled code. #R7Labs @velocidex Windows.Detection.Yara.Process only returns one hit per process here as I added some groupings to minimise any FPs github.com/rapid7/Rapid7-…
Another #100daysofyara post - #R7Labs Source a couple of samples: bazaar.abuse.ch/browse/tag/Soc… Running @velocidex Windows.Detection.Yara.Process in should detect on a running final payloads. I have focused on simple network connection & config filename strings.…
Thought I would make some posts for #100daysofyara. Not sure how often i'll post but good chance to test some triage workflow and build some pratical Velociraptor rules for automation :) In the example below I grabbed a NanoCore sample from MalwareBazaar -…
We're incredibly thankful to our wonderful community of contributors, testers and enthusiasts! Without you, Velociraptor wouldn't be what it is. To all of you, your family and friends, HAPPY THANKSGIVING!
Want a sneak peek at the upcoming Velociraptor v0.7.1? With awesome new capabilities like built in Sigma integration and enhanced notebook functionality, you will want to download the release candidate today and test it out. Be sure to log any bugs or issues through GitHub.…
Sharing out my workshop from DEATHcon. mgreen27.notion.site/mgreen27/Veloc… Fun to showcase some of the similar workflows I do day to day. @velocidex #dfir DEATHcon was put on by @rpargman @olafhartong @th3cyF0x its a really unique event - thank you!
Pushed out a Velociraptor artifact to scope some of the items in the SysAid post exploitation activity. docs.velociraptor.app/exchange/artif… @velocidex
Pushed out a Velociraptor artifact to scope some of the items in the SysAid post exploitation activity. docs.velociraptor.app/exchange/artif… @velocidex
If you missed VeloCon23, all talks are available on YouTube and the website. docs.velociraptor.app/presentations/… #dfir #cybersecurity #rapid7
While there are many great articles that discuss logs to be sent to a SIEM, many don't mention filtering on the endpoint during investigations. This is an area in which @velocidex excels. 🦖🚀 #FastForensicsBeforeFullSendIt #LogManagementMusts #SaveTheSIEM #SplunkCostBoss
If you like us here, you'll LOVE us on Discord. Come join the smartest and most lively #DFIR community on the planet. discord.com/invite/YAU3vRE
DebugPrivilege @DebugPrivilege
40K Followers 2K Following Windows Nerd | Ex-MSFT | Microsoft MVP in Windows | Interested in Security, Debugging, and Windows Internals.
Stephan Berger @malmoeb
28K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
Eric Capuano - Bsky: ... @eric_capuano
11K Followers 3K Following Co-Founder @recon_infosec | SANS DFIR Instructor | IANS Faculty | https://t.co/yUXCSu2Yso | ⬡ ❤ @shortxstack
Wes Lambert @therealwlambert
2K Followers 284 Following Lead Engineer, NSM @Target Github: https://t.co/tmQk6TbWMr https://t.co/5KDnHsdBlV Mastodon: @[email protected]
Grzegorz Tworek @0gtweet
36K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Nasreddine Benchercha... @nas_bench
11K Followers 1K Following Detection @Splunk & @cisco | previously @nextronsystems | @sigma_hq & @magicswordio maintainer | Eternal Learner
John Hammond @_JohnHammond
298K Followers 3K Following Cybersecurity Researcher @HuntressLabs || Just Hacking Training @JustHackingHQ w/ @ethicalhacker || https://t.co/UtsNJiyQtS || https://t.co/narO3sz7y6
Ryan "Chaps" Chapman @rj_chap
8K Followers 3K Following DFIR & malware analyst. @sansforensics FOR528 Author & FOR610 Instructor. @CactusCon crew. Husband & father. Comments = own.
Phill Moore @phillmoore
9K Followers 3K Following This Week in 4n6 // ThinkDFIR // SANS // CyberCX (DFIR) https://t.co/vLyL2sxTuy I might not know much, but I do know how to Google Tweets are mine
Dray Agha @Purp1eW0lf
6K Followers 3K Following Hunt & Response Senior Manager @HuntressLabs || "Competition is the law of the jungle, but cooperation is the law of civilisation” - Kropotkin
Matthew @embee_research
14K Followers 2K Following Security Researcher, Creating and Sharing Educational Content.
Jake Williams @MalwareJake
142K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him
Zach @svch0st
4K Followers 1K Following Everything DFIR @TheDFIRReport | @CuratedIntel | @XintraOrg https://t.co/ggakuKBS0S
Mike Felch (Stay Read... @ustayready
16K Followers 2K Following Targeted Ops Red Team @ TrustedSec | Hacking since Renegade BBS backdoors | Prior CrowdStrike/BHIS | In Christ's grip | I speak for myself only | K1HAQ
Nick Carr @ItsReallyNick
38K Followers 3K Following Tech Director / Threat Intelligence at Microsoft. Previously, Director of Incident Response & Intel Research at Mandiant. Former Chief Technical Analyst at CISA
Shanna Niggans 🦄 @fancy_4n6
4K Followers 2K Following Digital forensics & incident response #DFIR + #CTI | Horse and Dog mum | Co-host @ComfyConAU | CISO @OpSysAU | RB/SCP for @BlackHatEvents & @BSidesMelbourne
andrew @PurpleTeamLead
110 Followers 301 Following Seeking alpha {cybersecurity advocate} {DeFi enthusiast} {software dev}
Uwu @Uwu79033065Uwu
263 Followers 6K Following
Dario Candia @DarioLp8
345 Followers 5K Following Ciberseguridad/SOC/Blue Team/Investigador/ Threat Intelligence/
D03 @l4ss3m4nn3n
5 Followers 353 Following
Shina Mashiro @ShiinaaM
401 Followers 3K Following Microsoft Sentinel Enthusiast | 4n6 Investigator | Cloud Security | 🇮🇩 S.Kom
Natacha White @bamba82460
0 Followers 66 Following
HkrTrkr @AtomicDFIR
22 Followers 367 Following
Steven @keritzy
334 Followers 2K Following Independent Programmer / Security and Threat Researcher uid=0(root) gid=0(root) groups=0(root) reporting, exposing and crafting!
Gilad Ifrach @IfrachGilad
1 Followers 16 Following
Matcha 42 @Matcha__42
0 Followers 11 Following
Steecio @SteeciooPgUu4
26 Followers 645 Following
BlueHackTeam @BlueHackTeam_ES
8 Followers 77 Following HTB CDSA | BTL1 | eCDFP DFIR + SOC ANALYST Tier III
Drarreau @Drarreau3yW1qY
41 Followers 1K Following
Kate Joy @KateJoy1225962
0 Followers 28 Following
Headless Chicken @pollo_sin_head
0 Followers 60 Following
Chriss_0x01 @Chriss_0x01
1K Followers 7K Following #EthicalHacker | #CyberCrime #Investigator | #BugBounty #Hunter | #InfoSec & #CyberSec | #Intelligence & #OSINT | #OpSec | #Thread #Intelligence | #Scientist
MalwareUpdates @HashShaw50040
30 Followers 753 Following Hunting Malwares #Malware #Threathunting #DFIR
lucjayjay @lucjayjay
0 Followers 119 Following
Vinod More @vinodm41
97 Followers 2K Following Incident Response | Threat Hunting | Threat Intelligence | Threat Research | Red Teaming
Elio Settineri @ElioSettineri
16 Followers 712 Following
יובל אשכנזי @Yuvashke
0 Followers 15 Following
I//uS!0nS @c03rci0n
177 Followers 7K Following
Raviv Cohen @RavivCohen
136 Followers 658 Following I am Security Engineer @iSecPartners an all around #CodingNinja and a #Zymurgist / #Brewer.
R. @JiggaPls
4 Followers 1K Following
Matt McKay @MattMcKay1
61 Followers 109 Following
fadz @daf_nalz
2 Followers 5K Following
Ali Hussein @0xanalyst
590 Followers 708 Following Penetration Tester turned into Blue Team and IR Specialist #PurpleTeaming #DFIR
Meruem @Meruem49839142
169 Followers 8K Following
Mr Selemela @Original_Don_O
729 Followers 5K Following Aries, Strong, bold, impulsive, self-centered, ambitious, short-tempered, wild, fiery, enthusiastic, excited, energetic.
Amelia 😜 @Amelia4021
16 Followers 899 Following A vision of sеnsuality thаt will keeр уоu cоming bасk fоr mоre
عبدالعزيز @AbuzaidAziz7
64 Followers 756 Following
A Ankit Patel @AAnkitPatel2
49 Followers 691 Following I will win not immediately, but Definitely.😎😎
Le Ngoc Long @ngoc2304
12 Followers 718 Following
skrappy0x4a @skrappy0x4a
449 Followers 2K Following Lead on Cyber Defense | GWOT | Dad | НОРД | 🏍🦑 | ◧◧◧ | 🌲
ξiríkur Ḩallgrím... @31r1kur
485 Followers 2K Following A modern practicing philosopher in the ancient mold. I'm a self-educating polymath and student of many things.
809Secc @809Secc
2 Followers 45 Following
Eng.Ali Saad @EngAbuSaadCE
176 Followers 1K Following computer engineering Interested in DFIR and cyber security
Sergi Ortega @x0rPE
261 Followers 697 Following Threat Intelligence, Threat Hunting, Incident Response and RE/Malware Analyst, that's me.
Stephen W @IR_SteveW
4 Followers 98 Following
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
DebugPrivilege @DebugPrivilege
40K Followers 2K Following Windows Nerd | Ex-MSFT | Microsoft MVP in Windows | Interested in Security, Debugging, and Windows Internals.
Stephan Berger @malmoeb
28K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
Eric Capuano - Bsky: ... @eric_capuano
11K Followers 3K Following Co-Founder @recon_infosec | SANS DFIR Instructor | IANS Faculty | https://t.co/yUXCSu2Yso | ⬡ ❤ @shortxstack
Chad Tilbury @chadtilbury
22K Followers 600 Following Digital forensics and incident response. Ex-AFOSI, Mandiant, and CrowdStrike. SANS Institute Fellow and co-author of #FOR500 and #FOR508 courses.
SANS DFIR @sansforensics
109K Followers 98 Following The world's leading Digital Forensics and Incident Response provider. This feed updates you on latest DFIR news, events, and training.
Wes Lambert @therealwlambert
2K Followers 284 Following Lead Engineer, NSM @Target Github: https://t.co/tmQk6TbWMr https://t.co/5KDnHsdBlV Mastodon: @[email protected]
John Hammond @_JohnHammond
298K Followers 3K Following Cybersecurity Researcher @HuntressLabs || Just Hacking Training @JustHackingHQ w/ @ethicalhacker || https://t.co/UtsNJiyQtS || https://t.co/narO3sz7y6
Dave Kennedy @HackingDave
223K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
SwiftOnSecurity @SwiftOnSecurity
405K Followers 9K Following computer security person. former helpdesk.
Phill Moore @phillmoore
9K Followers 3K Following This Week in 4n6 // ThinkDFIR // SANS // CyberCX (DFIR) https://t.co/vLyL2sxTuy I might not know much, but I do know how to Google Tweets are mine
Dray Agha @Purp1eW0lf
6K Followers 3K Following Hunt & Response Senior Manager @HuntressLabs || "Competition is the law of the jungle, but cooperation is the law of civilisation” - Kropotkin
Florian Hansemann @CyberWarship
84K Followers 47 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98M
Jake Williams @MalwareJake
142K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him
chompie @chompie1337
83K Followers 1K Following hacker, weird machine mechanic, X-Force Offensive Research (XOR)
Zach @svch0st
4K Followers 1K Following Everything DFIR @TheDFIRReport | @CuratedIntel | @XintraOrg https://t.co/ggakuKBS0S
AbdulRhman Alfaifi �... @A__ALFAIFI
2K Followers 271 Following #DFIR, #Developer, #Rust I write blogs about stuff that interest me, check them out at https://t.co/5bspWHXTUL Instagram: @abdulrhman_u0041
Lisette Oropesa @Lisette_Oropesa
17K Followers 857 Following Opera singer, Marathoner, vegan, happy!
Elīna Garanča @elinagaranca
15K Followers 62 Following Official Twitter account of Latvian mezzo-soprano Elīna Garanča.
Nadine Sierra @nadinecsierra
4K Followers 224 Following American soprano 🇺🇸 • GM Art and Music Management • Follow me for a behind-the-scenes look at the life of an opera singer 🎶
Nadine Sierra @nadinesierra
395 Followers 1 Following
Metropolitan Opera @MetOpera
272K Followers 371 Following The world's greatest singers on the world's greatest stage. #MetOpera
Aura @SecurityAura
6K Followers 651 Following GCIH, GCFE, GDAT | DFIR, TH, DE | @CuratedIntel DFIR https://t.co/BMWUwziTLh https://t.co/MmX2YNVqdk https://t.co/R20zseQfLk
Crime and PUNishment @MadisonCarly26
21K Followers 23K Following SoCal born, NYC raised, VT living, but faithfully red ♥️. Badass chick with a fancy for Dad jokes 😜.
Science girl @gunsnrosesgirl3
3.9M Followers 6K Following science in context, art history and some puzzles to solve
Mediocre Mom @MediocreMamaa
4K Followers 394 Following Always hangry. never fashionable. sometimes funny. My linktree: https://t.co/aSUIRbRWcz Featured on @huffpost @TODAY_parents @boredpanda @scarymommy
Not the Nanny @not_thenanny
8K Followers 659 Following Mother and Wife | Joker and Beer-Drinker | Runner and Cheetos-Eater | Snarky and Loving | Slightly Sweary | Come for the laughs, stay for the support
mom mom mom mom mom @notmythirdrodeo
25K Followers 3K Following https://t.co/lKTwNPcAGY @momsoverhere on IG. Mommin’ the best I can with low standards. Featured in @HuffPost, @Buzzfeed, @Today_Parents and more.
Matt Linton @0xMatt
7K Followers 772 Following #DFIR with a lot of focus on the IR part. Cellist, NASA Alum, Parrot lover, USAR & EMS do-er. BlueSky is @amuse.bsky.social
Simson Garfinkel @xchatty
2K Followers 2K Following Computer scientist & journalist, specializing in AI, privacy, ethics, big data, usability and security. My opinions here. ORCID 0000-0003-1294-2831
Jared Atkinson @jaredcatkinson
10K Followers 2K Following | CTO @specterops | Host @dcpthepodcast | Ex PowerShell MVP | USAF Vet | FC Bayern Supporter | Language Learner 🇳🇴 🇮🇹 🇧🇷 |
My Life As Dad @milifeasdad
6K Followers 833 Following Dad. Real silly. Davidoff Cool Water activist. Posts seen on @Buzzfeed, @HuffPost, @TODAY_Parents & more. I.G. 👉 https://t.co/f1BzpG3AnQ . My tweets in 🔗 below.
Azeria @Fox0x01
122K Followers 597 Following Sneaky bit flipper | CEO @azeria_labs | Author of “Arm Assembly Internals & RE” @BlueFoxBook | Adjunct Professor @SAISHopkins | Forbes 30u30
Caitlin Condon @catc0n
3K Followers 3K Following Adventurer. Takes a lot of photos, calls many places home. VP of research @VulnCheck. Former research director at @Rapid7 / @metasploit. Opinions mine. She/her.
One Awkward Mom @oneawkwardmom
15K Followers 859 Following wife || mom of three || perpetually late || relatively unsociable || my tweets ➡️ https://t.co/zTOnobXohj
nice things I say to ... @meantomyself
27K Followers 7K Following She may not look like much but she can catch a man. So southern Duke's Mayo quoted me. Not funny or young enough to write tweets for Clorox. avi @popartcartoonz
DamnFineTweet @damnfinetweet
11K Followers 3K Following RIP DamnFineTweet 8/7/2019-4/27/2023 thank you for 85000 trophies and a million good vibes. I'll miss you!
Midge @mxmclain
33K Followers 2K Following Relentless architect of my own hell, curator of seasonal profanities, cultural symbol
Snarky Mommy @SnarkyMommy78
37K Followers 2K Following venting snarkily about motherhood and raging angrily about the current president
Raj Samani @Raj_Samani
14K Followers 606 Following Chief Scientist @Rapid7 | @cloudsa | Co-author of @CyberGridBook & CSA Guide to Cloud | Advisor @EC3Europol https://t.co/YpisLrWlVR
Fascinating @fasc1nate
3.3M Followers 2K Following Posting interesting science, gadgets, history, art, and more. Subscribe for in-depth posts. As an Amazon Associate I earn from qualifying purchases.
Lil Bit 🌈 @LizerReal
51K Followers 880 Following Wife of a guy. Mother to spawns. Sugar glider in my bra. Parenting cautionary tale. 🖕🏻🍊 (she/her)
ACE Responder @ACEResponder
17K Followers 225 Following Practice threat hunting & detection engineering in a real SIEM with real attacks. Join us and become the best.
Ginny Hogan_ @ginnyhogan_
152K Followers 5K Following watch REGRESSION on Amazon Prime or listen to THE GREAT INDOORS on Audible, links ⬇️
Marcus Guevara @MGuevara224
669 Followers 607 Following Dad of 7 - 1 in Heaven. Director of Sec Svc @Recon_InfoSec. Author of #HackingTheology. SANS #FOR508 Instructor. Former @USCG CPT and @DHSgov Hunt/IR team lead
@itssherifield @itssherifield
13K Followers 1K Following Musician mama of 3 treading water and taking names Formerly @Lmemeit IG and TikTok: @itssherifield https://t.co/PEkz5e5DfK
Jim Gaffigan @JimGaffigan
2.8M Followers 3K Following Male Model. EVERYTHING IS WONDERFUL TOUR all new material. My first wife is @jeanniegaffigan. https://t.co/39GfjGbHaW
Andrew D. Huberman, P... @hubermanlab
1.6M Followers 2K Following Professor of Neurobiology and Ophthalmology at Stanford Medicine • Host of Huberman Lab • Focused on science and health research and public education
Dr. Nicole LePera @Theholisticpsyc
1.0M Followers 322 Following Join my private healing community @selfhealerscirc 👇🏼
Francisco Ribeiro @blackthorne
2K Followers 2K Following Hacker, Researcher, Engineer. Previously: XTX Markets, Google, DeepMind, Mimecast, Cisco et al.
Adam Sindelar @t80sr
82 Followers 489 Following OS development at Oculus, previously Linux security at Google. Astronomy in spare time. Views are my own.
Real Life Mommy @reallifemommy3
32K Followers 3K Following Twitter is cheaper than therapy. Tweets are mine 👀@huffpost @TODAY_Parents @buzzfeed @babycenter @chicagotribune @boredpanda @thepoke @thechive ...
I Hide From My Kids @IHideFromMyKids
20K Followers 989 Following *humor account* | writer | someone once told me I was funny, for a mom | featured on BuzzFeed, HuffPost & more | Read my tweets👇
Shanna Niggans 🦄 @fancy_4n6
4K Followers 2K Following Digital forensics & incident response #DFIR + #CTI | Horse and Dog mum | Co-host @ComfyConAU | CISO @OpSysAU | RB/SCP for @BlackHatEvents & @BSidesMelbourne
But With Raptors @ButWitRaptors
106K Followers 1 Following @actionmoviekid and @awakeland3d put raptors in things. Somehow Tom Cruise is also involved Watch #VFXandChill every Friday at 10am pacific at https://t.co/Ypi3tXDhiF!
Carlos Cajigas @Carlos_Cajigas
2K Followers 44 Following Mostly an Incident Responder and Digital Forensics examiner | Former @WestPalmPD | SANS Principal Instructor | Founder
PUNS @ThePunnyWorld
634K Followers 5 Following Follow for the most hilarious puns and dad jokes! Not affiliated with any of my tweets.Trends for United States
You might like
