Olivia
Online
-Yiannis-
@Sec_GroundZero
Pentester / RnD / developer of the #WarBerryPi and sometimes just ¯\_(ツ)_/¯. Opinions and tweets represent me not my company.
Joined October 2013
519 Following
3.4K Followers
2K Posts
Pinned Tweet
So i polished my KQL notes and ended up with a 70 page long pdf. You can find it here https://t.co/esDVonbFkG
Thx and credits also go to @DebugPrivilege @rpargman @olafhartong as i rely a lot on their insights.
First post after a long long time. I had the opportunity to present at @EXNESS behind-the-code event at a unique setting. The interaction and networking at a physical event was refreshing.
It's Launch Day for #CloudBreach! Register for #BreachingAzure Lab and get 25% discount code using the promo code "LAUNCHDAY25". #BreachingAzure challenges students to utilise the latest offensive techniques in a realistic hybrid environment. Are you ready to breach the cloud?
Shoutout to @GeorgePatsias1 for his very cool project https://t.co/juzf6LH0LI. #netsec #infosec #redteam
Who to follow
Marcello 
@byt3bl33d3r
CyBeRsEcUrItY | Not afraid to put down with some THICC malware on disk | AI Research @PaloAltoNtwks | former purple team | Ex @spacex
Rasta Mouse
@_RastaMouse
make pic +relax
Chris Thompson
@retBandit
CEO @ RemoteThreat & Founder of Offensive AI Con | Former Head of X-Force Adversary Services | Black Hat Review Board | inveni et usurpa
@rpargman @DebugPrivilege @olafhartong Very happy to hear that. I learned a lot from the people sharing their work.
So i polished my KQL notes and ended up with a 70 page long pdf. You can find it here https://t.co/esDVonbFkG
Thx and credits also go to @DebugPrivilege @rpargman @olafhartong as i rely a lot on their insights.
@arcanecode Thank you. I use notion for technical notes and obsidian for non tech research/book but i will check this out as well.
Switched from Evernote to Notion and finally my notes are starting to make visual sense.
@Max_Mal_ @olafhartong @falconforceteam This might be different as the PE header is also changed if i am reading this correct in order to bypass this detection.
Quick KQL query to hunt for renamed lolbins not running from c:\windows, \system32 or \syswow64. @olafhartong showed it in a more elegant way for MDE as part of the @falconforceteam FalconFriday. #threathunting (https://t.co/oqHNnG3Lo0)
https://t.co/RFnbxJ8Q1j
First attempt with standard dev in KQL based on @rpargman beaconing analysis to detect potential bruteforce attacks with EID4625.
https://t.co/X2Ywjn9l0a
Discord bot cnc https://t.co/SsUnmHeeH7 - @GeorgePatsias1
Last Tuesday I moderated an event organized by the Int'al Chamber of Commerce National Committee of CY,titled Digital Economy&the Importance of ICT for Business in a post-COVID environment. If you didn't have the chance to watch it, check out the recording https://t.co/qVbwDftBqV
4 days of intense detection engineering training with @olafhartong done.
So much info to ingest from the trainers and the great course participants. Now back to that detection cycle.
Day 1 of @falconforceteam detection engineering course done. Amazing content, tons of new learning and @olafhartong makes it easy. Looking forward for the next days.
Answer is that they don't have to be normalized. EQL understands the schema and it can be queried directly.
Help needed: anyone normalized security logs with eqllib? Sysmon is fine and i see that security logs are supported but the format it not identified @EndgameInc
@0xffhh @DebugPrivilege Little bit of a hacky solution but I think i got it working working with milliseconds.
https://t.co/ic2vWGPES6
1986 when my dad (center) was the distributor for the new North Star microcomputers (mainframes) in Cyprus.
@0xffhh @DebugPrivilege As you said it wont be elegant it seems. I dont think ago will do it but i will try with datetime_diff. went through @DebugPrivilege guide but couldnt find anything close to this. Probably do 2 let commands to hold each date from and then compare the two. Union & iif or something
Last Seen Users on Sotwe
sukasto
Seen from Indonesia
Nude scenes in movies
Seen from Singapore
へびつかい
Seen from Japan
bayfredo 65
Seen from France
Keong G3mbul
Seen from Indonesia
Smokeman
Seen from Thailand
🥀Aspen Brooks🖤
Seen from Turkey
Fiona
Seen from Indonesia
Ibra
Seen from Indonesia
فحل الكويت. ٢٠
Seen from Saudi Arabia
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.9M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers