Nde @YourNextCISO - Twitter Profile

7 months ago

@Hassans_Sec @cyberwarfarelab Congratulations man

0

1

0

34

YourNextCISO retweeted

spencer

@techspence

10 months ago

DO NOT hire a pentesting firm until you've done this... This was a great conversation for 2 reasons: 1, we talk about why your organization might actually not be ready for a pentest and 2, we talk about stuff to do before a pentest so when you do have a pentest, you get more out of it. Appreciate all the regular, new and occasional listeners! 🙏 https://t.co/v8Xa4IarE4

techspence's tweet photo. DO NOT hire a pentesting firm until you've done this...

This was a great conversation for 2 reasons:

1, we talk about why your organization might actually not be ready for a pentest and
2, we talk about stuff to do before a pentest so when you do have a pentest, you get more out of it.

Appreciate all the regular, new and occasional listeners! 🙏
https://t.co/v8Xa4IarE4

8

265

33

244

24K

Navigating Life with God's Love🍂, Hope, sometimes a pen and sometimes a line of code.

10 months ago

@Lizettle_ @sisinerd Congratulations mentor 🎉

0

8

Who to follow

Shekinah Manyi✨

@ShekinahManyi

Kouti Divine

@kouts_CQ

Telecommunications Joyfully live wherever you are😃

Kelton

@kelton194

Techie| 20% Geek 😂

YourNextCISO retweeted

Elizabeth Ekedoro

@Lizettle_

10 months ago

Let me tell you how much of a BIG DEAL this is!!!!!!! Black Hat is the top 5 and one of the most respected/prestigious cybersecurity conferences in the world!!!!!!!!!!!!!!!! Truly miracles happen, truly God answers prayers, and truly God is good. Thank you @sisinerd

11

166

18

2

6K

YourNextCISO retweeted

Dr Iretioluwa Akerele

@ireteeh

11 months ago

We launched CyBlack SOC Academy last year, and we are proud to share that we have recorded 18 jobs so far. Application for the next cohort is now open. As part of the selection process, CyBlack will host a Pre-Entry Pitch on August 9th, 2025, live on X. This is the first stage of getting into the Academy. If you know any aspiring SOC Analyst who will be interested in this life-changing opportunity, kindly share with them. https://t.co/o9RF5BIrun

ireteeh's tweet photo. We launched CyBlack SOC Academy last year, and we are proud to share that we have recorded 18 jobs so far.

Application for the next cohort is now open. As part of the selection process, CyBlack will host a Pre-Entry Pitch on August 9th, 2025, live on X. This is the first stage of getting into the Academy.

If you know any aspiring SOC Analyst who will be interested in this life-changing opportunity, kindly share with them.

https://t.co/o9RF5BIrun

26

260

104

57

15K

11 months ago

@Secfortress @yeswehack Nice work 🔥

0

1

0

74

Myd33n 🤡 {GIRAN} @Mydeen4u

11 months ago

@DamilolaAbiona8 Congratulations 🎉

1

0

52

YourNextCISO retweeted

Olúmáyòwá.dev

@akintunero

11 months ago

If you missed the session this morning: https://t.co/P04bfOqUCV

0

11

4

2

1K

YourNextCISO retweeted

11 months ago

Please help repost and like when you see this🙏

0

31

15

0

975

YourNextCISO retweeted

ToluTalksSecurity @TisforTolu

11 months ago

Cybersecurity is broad. Before you start thinking “ethical hacker” or “SOC analyst,” pause. The real first step? Understanding the domains, the core areas of cybersecurity that guide everything from career paths to certifications. Let’s break them down 🧵

30

2K

274

2K

109K

YourNextCISO retweeted

iPsalmy👻🥷🏽 @Dghost_Ninja

11 months ago

Got my write-up published on a DevSecOps page...LFG! 💪🏽🔥

13

87

16

4

4K

YourNextCISO retweeted

Mehmet Ergene

@Cyb3rMonk

11 months ago

🚨Bad news for defenders, good news for red teamers: Linkable token identifiers in Entra ID are useful only in an AiTM scenario. Doesn't even cover Device Code Phishing. Blog soon. #ThreatHunting #DetectionEngineering #redteam

Cyb3rMonk's tweet photo. 🚨Bad news for defenders, good news for red teamers:
Linkable token identifiers in Entra ID are useful only in an AiTM scenario. Doesn't even cover Device Code Phishing. Blog soon.

#ThreatHunting #DetectionEngineering #redteam https://t.co/EDoTQAe9aU

4

100

18

67

8K

YourNextCISO retweeted

11 months ago

Scheduled Task Persistence via SharpPersist + Cobalt Strike. Runs a Base64-encoded PowerShell payload Executes hourly via Task Scheduler (schtask) Delivered fully in-memory through Beacon Tool: SharpPersist Method: Scheduled Task Payload: Encoded PowerShell #redteam

T3chFalcon's tweet photo. Scheduled Task Persistence via SharpPersist + Cobalt Strike.

Runs a Base64-encoded PowerShell payload
Executes hourly via Task Scheduler (schtask)
Delivered fully in-memory through Beacon

Tool: SharpPersist
Method: Scheduled Task
Payload: Encoded PowerShell

#redteam https://t.co/IGyAk3afz6

4

144

27

98

14K

YourNextCISO retweeted

I am Jakoby

@I_Am_Jakoby

11 months ago

Added a new tool to: https://t.co/v4FnSVbaDD ⚠️Please Use Responsibly⚠️ You can use this to instantly generate an obfuscated reverse shell in powershell that i have personally used to beat EVERY single EDR out there right now. I've added some pretty cool stuff to my website but this is one of my favorite additions. 🛑 Disclaimer: This tool is for educational and authorized security testing only. Misuse could be illegal. Don’t be dumb. Shoutout to the only ones that were actually able to stop it, using something called "ring fencing" @ThreatLocker This is not a sponsored post, just a fan of them #Edr_Is_Not_Enough

I_Am_Jakoby's tweet photo. Added a new tool to:
https://t.co/v4FnSVbaDD

⚠️Please Use Responsibly⚠️

You can use this to instantly generate an obfuscated reverse shell in powershell that i have personally used to beat EVERY single EDR out there right now.

I've added some pretty cool stuff to my website but this is one of my favorite additions.

🛑 Disclaimer: This tool is for educational and authorized security testing only. Misuse could be illegal. Don’t be dumb.

Shoutout to the only ones that were actually able to stop it, using something called "ring fencing" @ThreatLocker

This is not a sponsored post, just a fan of them
#Edr_Is_Not_Enough

65

2K

385

2K

155K

YourNextCISO retweeted

11 months ago

Everyone knows certutil.exe. But certreq.exe? Native to Windows Signed by Microsoft HTTP POST support Can exfil small files Originally for certs. It wasn’t designed for exfiltration… but it works especially for small files. https://t.co/hqFwxNLqVt

4

369

59

275

23K

YourNextCISO retweeted

11 months ago

Decrypting Edge Browser Passwords Modern Edge/Chrome encrypt saved logins with AES-GCM. Step 1: Extract AES key from the Local State file Step 2: Use DPAPI to decrypt the key Step 3: Use that key to decrypt credentials from the SQLite blob Boom, plaintext passwords. 👊🏾

T3chFalcon's tweet photo. Decrypting Edge Browser Passwords

Modern Edge/Chrome encrypt saved logins with AES-GCM.

Step 1: Extract AES key from the Local State file
Step 2: Use DPAPI to decrypt the key
Step 3: Use that key to decrypt credentials from the SQLite blob

Boom, plaintext passwords.

👊🏾 https://t.co/njhOc3WxKK

5

289

46

261

17K

YourNextCISO retweeted

bluecapesec @bluecapesec

11 months ago

🔷 Want to learn real Windows forensics? Join our live walkthrough of a real-world compromise + see what a structured forensic process actually looks like. 👉 Register free: https://t.co/hE5jRIDXTO #DFIR #DigitalForensics #SOCAnalyst #BlueTeam

bluecapesec's tweet photo. 🔷 Want to learn real Windows forensics?
Join our live walkthrough of a real-world compromise + see what a structured forensic process actually looks like.

👉 Register free: https://t.co/hE5jRIDXTO
#DFIR #DigitalForensics #SOCAnalyst #BlueTeam https://t.co/FHryZR6Afo

0

6

2

5

709

11 months ago

@Olufela_Jr Congrats 🔥🔥

1

0

19

YourNextCISO retweeted