Olivia
Online
Black Hills Information Security
@BHinfoSecurity
Specializing in pen testing, red teaming, and Active SOC. We share our knowledge through blogs, webcasts, open-source tools, and Backdoors & Breaches game.
Joined May 2013
2.4K Following
49.4K Followers
12.7K Posts
Pinned Tweet
**NEW** BHIS | Blog
(It's 10pm. Do you know where your pipelines are?) How well do you know your Continuous Integration/Continuous Delivery (CI/CD) pipelines?
Auditing GitLab: The CI/CD Kill Chain
by: @ProOfConcept9
Published: 06/03/2026
Learn more: https://t.co/mHZIe71cjs
Join us for this week's infosec-news stories with the Black Hills Infosec team live at 4:30pm ET on Mondays -- https://t.co/7WOvS2Avtl
Not all BloodHound data collection methods are created equal.
Learn more: https://t.co/NcOAiV7S8L
A Practical Guide to BloodHound Data Collection
by: Alyssa Snow
Published: 4/29/2026
Who to follow
strandjs - [email protected]
@strandjs
I will light the way by the bridges I burn.
Retired Senior SANS Instructor
IANS Faculty
Black Hills Information Security
Active Countermeasures
ATT&CK
@MITREattack
MITRE ATT&CK® - A knowledge base for describing the behavior of adversaries. Replying/Following/Re-tweeting ≠ endorsement. @ https://t.co/wt46ArkZVt
Will Schroeder
@harmj0y
Researcher @SpecterOps. Coding towards chaotic good while living on the decision boundary.
Bronwen Aker killed todays webcast! For those who missed it be on the lookout for the full webcast and slide deck to be posted here on Monday!
For now last look back at last weeks webcast on Looking at A.I. Wrong with John Strand, Brian King, and Derek Banks1
No slide deck for this one so just hit that link, relax and listen: https://t.co/i6sXKxqTEf
Settle in class its time for Hayabusa 101 with Patterson Cake!
Hayabusa is an open-source Windows event log fast forensics timeline generator and threat hunting tool by @SecurityYamato that you need in your belt.
Learn how to install and setup Hayabusa so you enhance your Windows endpoint investigations!
Download it here: https://t.co/mL7p94j6De
Check out these additional resources to learn more:
“Wrangling Windows Event Logs with
Hayabusa and SOF-ELK – Part 1” blog:
https://t.co/i1fcB0VB9l
“Wrangling Windows Event Logs with
Hayabusa and SOF-ELK – Part 2” blog:
https://t.co/Hz2kmaQBDV
**NEW** BHIS | Blog
One password reset. One bad habit. One very long day for the security team. This story, originally from the ANTISOC PROMPT# zine, follows how one helpdesk password shortcut turned into more than 100 compromised accounts during a continuous pentesting operation.
Bad Habits: An ANTISOC Operation
by: Corey Ham
Published (in blog format): 5/27/2026
Learn more: https://t.co/OZMRryHteu
Join us for this week's infosec-news stories with the Black Hills Infosec team live at 4:30pm ET on Tuesday??? Crazy right? -- https://t.co/4gejRY8YG2
Hey folks! Let's look at what's happening with @Antisy_Training Training and Black Hills Information Security!
Ant-Cast:
Wed, May 27, 2026 12:00 PM Threat Hunting in the Agentic Age w/ Faan Rossouw Join Faan Rossouw, creator of https://t.co/E6ZAecmIru, as he walks you through how agentic AI removes the constraint that limited threat hunting's impact for over a decade and what that means for how you build, design, and hunt.
Register:https://t.co/Ve4OhjsE2C
Webcast:
The next BHIS webcast is on The Paranoid Prompter - Prompt Engineering for Infosec with Bronwen Aker Join us for a free one hour webcast and go deep into specific realities cybersecurity professionals face around client data and liability, tackling challenges that most prompt engineering tutorials, even those for security professionals, do not address.
Thu, May 28, 2026 1:00 PM EDT
Register: https://t.co/n5lqCFKqxo
"The databases have since been secured, but the incident highlights a critical issue for businesses that think AI chatbots are a silver bullet or a turnkey replacement for humans."
Lessons From A Chatbot Incident: When AI Becomes a Data Liabilit
by: Jeremiah Fowler
Originally Published (In blog format): 03/25/2026
Learn more: https://t.co/WCfDjc5wQ4
"Tabletop exercises have long been a staple of security and BCDR activities, designed to simulate real-world scenarios for team training and preparedness."
How to Lead Effective Tabletops
by: Glen Sorenson
Originally Published (In blog format): 03/18/2026
Learn more: https://t.co/Fg0jhg6l6z
**NEW** BHIS | Blog
“You can’t detect what you don’t know exists.”
In this new BHIS interview, Hayden Covington and Beau Bullock discuss how a culture comfortable with knowledge sharing between offensive and defensive teams helps close that gap.
Same Problem, Different Angles: When Red Team and Blue Team Actually Talk to Each Other
by: Melissa Lauro
Published: 5/20/2026
Learn more: https://t.co/C2OJNoIMIr
"Risk management is what GRC is all about."
Read more: https://t.co/hVYS4WJ2Ga
Understanding GRC: How to Navigate Risks and Compliance Standards
by: Sean Reilly
Published (in blog format): 03/18/2026
Join us for this week's infosec-news stories with the Black Hills Infosec team live at 4:30pm ET on Mondays -- https://t.co/4bZsIoDLEQ
"This article provides an offensive security perspective on Microsoft Edge WebView2 Runtime, including architectural weaknesses, existing vulnerabilities, and exploitation methods."
Read more: https://t.co/GSoFJIGN40
Signed, Trusted, and Abused: Proxy Execution via WebView2
by: @Tyl0us
Published: 4/15/2026
**NEW** BHIS | Blog
How do red teamers find new vulnerabilities before they become old news?
How to Identify and Exploit New Vulnerabilities
by: Matthew Eidelberg
Published (in blog format): 05/13/2026
Learn more: https://t.co/TqK7zvUNVJ
Hey folks!
Let's look at what's happening with @Antisy_Training and Black Hills Information Security!
Anti-Cast:
The next Anti-Cast is on How to Build a Bulletproof Pretext w/ Alethe Denis!
Wed, May 13, 2026 12:00 PM EDT
Register: https://t.co/hKrCiAGyEo
Join Alethe Denis, DEF CON Black Badge-winning social engineer and Senior Security Consultant II at Bishop Fox, as she breaks down how to build pretexts that hold up under real-world pressure in physical red team engagements.
BHIS:
The next BHIS webcast is on Intro to Web Hacking with Caido with Jack Hyland!
Thu, May 14, 2026 1:00 PM EDT
Register: https://t.co/Pq5EA32jh6
Join us for a one hour, hands-on webcast about Caido, a modern HTTP proxy written in Rust that's quickly becoming a serious alternative to Burp Suite.
P.S. The FREE Threat Hunting Summit from Antisyphon Training is on June 17th, with live training from June 18-26. Use code THSUMMIT2026 for 20% off!
https://t.co/r2K451fPLp
Come find us! We're at BSidesNOLA talking to people, learning things, and probably eating a beignet about it! 🍩
Join us for this week's infosec-news stories with the Black Hills Infosec team live at 4:30pm ET on Mondays -- https://t.co/WIbwVNP54t
"[...] the common wisdom is: There are way more defensive security jobs than offensive jobs, so if you want to do X in cybersecurity, you should start with a blue team position..."
Read more: https://t.co/OSh4FthO0W
Getting Started In Pentesting – Advice From The BHIS Pentest Lead
by: Josh Daniels
Published: 04/08/2026
When's the last time you hunted your VPN gateway?
If you had to think about it... this is your course. You'll learn to detect adversary activity at edge devices, DMZ systems, and VPN appliances using real attack campaigns.
Threat Hunting · June 18th
🔗 https://t.co/Kmz62G0tpe
Last Seen Users on Sotwe
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.7M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers