Izy @IzySec - Twitter Profile

IzySec retweeted

Lukas Klein | @rantasec.bsky.social @RantaSec

3 months ago

Check out GoLinHound: - Discovers Linux & SSH attack paths - Outputs OpenGraph JSON for BloodHound ingestion - Integrates with SharpHound and AzureHound data to unveil cross-technology attack paths https://t.co/HPh2xiiCzl

2

76

34

50

4K

Izy @IzySec

9 months ago

@ImposeCost @ConnorSecurity fire

0

2

0

102

IzySec retweeted

Andrew Thompson

@ImposeCost

about 1 year ago

Catch @IzySec's recent podcast discussing Rogue Remote Desktop Protocol: https://t.co/sJHJB3MBDk

0

8

6

0

965

IzySec retweeted

Mandiant (part of Google Cloud) @Mandiant

about 1 year ago

Signed .rdp files are being used to trick users. GTIG observed a novel #phishing campaign targeting European government and military organizations, and has attributed it to a suspected Russia-nexus #espionage actor tracked as UNC5837. Read the details: https://t.co/XimKgMIPuQ

Mandiant's tweet photo. Signed .rdp files are being used to trick users.

GTIG observed a novel #phishing campaign targeting European government and military organizations, and has attributed it to a suspected Russia-nexus #espionage actor tracked as UNC5837.

Read the details: https://t.co/XimKgMIPuQ https://t.co/IQWRklIHJz

0

162

58

60

14K

IzySec retweeted

Steve YARA Synapse Miller @stvemillertime

about 1 year ago

1) I didn't know .RDP config files could be signed 2) RDP RemoteApps are crazy 3) I always appreciate a Fuzzy Snuggly Duck https://t.co/rlyNNxfHFW

3

207

55

109

13K

IzySec retweeted

Steve YARA Synapse Miller @stvemillertime

about 1 year ago

Neat blog on RDP tradecraft, includes examples, practical recommendations on hardening, detection ideas etc.

0

17

3

9

3K

Izy @IzySec

about 1 year ago

Having convertible detection content is great, no doubt. What I think is underrated is blueteam-focused tradecraft intel. Red teams share it all the time, we should too. A threat group recently showed creativity with a known technique. Here's how it worked https://t.co/PME7Iu0kWX

1

45

13

28

6K

Izy @IzySec

about 1 year ago

@ImposeCost For Azure trainings, I've heard good things about https://t.co/QVlr4mzz7E https://t.co/dnY0KoOjzV https://t.co/BeiHBfxNSW I've not personally taken any myself. For AWS, I have taken and can recommend the course from the AWS IR team themsleves https://t.co/Sy4Zb2Py9R

0

3

0

2

76

Izy @IzySec

over 1 year ago

Some solid work done by the team! Give them a read :)

Jared Wilson @JWilsonSecurity

over 1 year ago

🌶️ Active Fortinet Zero-Day Exploitation ITW 🌶️ https://t.co/ZfFG0D2676 #zeroday #fortinet #inthewild

1

48

20

11

11K

0

8

1

1K

IzySec retweeted

ACE Responder

@ACEResponder

almost 2 years ago

Windows audit policies, the events they enable and the relative volume of events they generate #ThreatHunting #DFIR

3

679

192

741

96K

Izy @IzySec

almost 2 years ago

A sister team of mine is hiring. They do hard core detection engineering. You will be analyzing things you won't see elsewhere and writing a variety of content to detect it. Super technical role alongside some great folk.

John Connor @ConnorSecurity

almost 2 years ago

I'm excited to announce that I'm hiring two Detection Engineers for the Mandiant Detection Engineering Team! Come build detections at a global scale for cutting edge threats on an amazing team. Apply here https://t.co/ZPcLU982kP #DetectionEngineering #Mandiant #Detection

3

120

45

32

33K

0

11

0

951

Izy @IzySec

about 2 years ago

@ImposeCost COUNTER STRIIIKEE

0

1

0

102

Izy @IzySec

about 2 years ago

@ImposeCost I hear it's great :D

0

2

0

80

IzySec retweeted

SEKTOR7 Institute

@SEKTOR7net

about 2 years ago

Wondering what telemetry an EDR collects? Wonder no more! @Kostastsale and @ateixei run an EDR Telemetry Project, covering all major EDRs: "The main goal of the EDR Telemetry project is to encourage EDR vendors to be more transparent about the telemetry they provide". Blog: https://t.co/VOEt9dDQVl Table: https://t.co/8uYv4jFrRj Github: https://t.co/NLwwXzBEHb #redteam #blueteam #telemetry

SEKTOR7net's tweet photo. Wondering what telemetry an EDR collects?

Wonder no more! @Kostastsale and @ateixei run an EDR Telemetry Project, covering all major EDRs:

"The main goal of the EDR Telemetry project is to encourage EDR vendors to be more transparent about the telemetry they provide".

Blog: https://t.co/VOEt9dDQVl
Table: https://t.co/8uYv4jFrRj
Github: https://t.co/NLwwXzBEHb

#redteam #blueteam #telemetry

7

500

213

332

51K

IzySec retweeted

eversinc33 🤍🔪⋆｡˚ ⋆ @eversinc33

over 2 years ago

Small experiment today, inspired by @kaganisildak, using RCON protocol, as used by e.g. CS 1.6 as a C2 channel for the lulz

13

428

71

63

60K

Izy @IzySec

over 2 years ago

@ImposeCost I liked the Psychology of Money by Morgan Housel.

0

2

0

171

Izy @IzySec

over 2 years ago

@_RastaMouse Your content doesn't need marketing, Daniel!

0

2

0

619

IzySec retweeted

Riccardo @dottor_morte

over 2 years ago

It's a bittersweet moment, but our series of "Attacking an EDR" has come to an end! Me and @Her0_IT hope that you had as much fun reading it as we had writing it. https://t.co/2hWelV4oHT

0

104

29

47

9K

Izy @IzySec

over 2 years ago

Woooo, legoooo!

5

18

0

4K

IzySec retweeted

Jared Atkinson

@jaredcatkinson

over 2 years ago

I've just released the next edition of the On Detection series. I investigate why detection rules based on Process Creation are often brittle or easily bypassed. I also provide a framework for discerning when it is appropriate and when it isn't. https://t.co/opAcnNfIMl

7

238

88

99

48K

Izy

@IzySec

Last Seen Users on Sotwe

Trends for you

Most Popular Users