Olivia
Online
Marcus Tonsmann
@_k00s
Security Stuff | GREM GXPN GDAT GSE | NYC ๐โโ๏ธ๐งโโ๏ธโท
Joined September 2018
470 Following
190 Followers
371 Posts
ย Pinned Tweet
Had an absolute blast at @WWHackinFest again this year. Crazy to think that last year #WWHF was my first con.
Slides from my talk on DoH for Attackers and Defenders are here: https://t.co/keXaWAoZ5z
Look out for a full write-up soon.
@seanhn Lots of buzz about GLM 5.2 cyber performance, I've yet to see a benchmark run though. Who will pay for the inference to run CyberGym, ExploitBench for these open weight models? We're talking 5-10k per run per bench. Non-trivial for individual researchers.
@InvokeReversing looks like they've pivoted to AI:
d611c3356b41602e07ae6919162593e1
imageryx.exe
imageryx[.]ai
@Cyb3rWard0g Looking forward to hearing what's next!
Who to follow
Jonny Johnson 
@JonnyJohnson_
Windows Internals & Telemetry Research
@ThePayloadPod
Blog: https://t.co/MnE9BCsSnA
Github: https://t.co/v7hSLq6Edz
Mike Felch (Stay Ready)
@ustayready
Offensive @ TrustedSec | Hacking since Renegade BBS backdoors | Prior CrowdStrike/BHIS | In Christ's grip | Fighter for truth | K1HAQ
Lares
@Lares_
One of the world's premier Penetration Testing, App Sec & Red Team organizations
@ItsReallyNick @Ground_app @grok I have been testing out for a while and found it very illuminating. Generally slower than NYT or WSJ for push notifications but getting headlines at a glance and blindspot focus is really helpful
@brysonbort I think about this a lot and what it means when we talk about exec comms. It's a journey not a destination blah blah but how does a CFO/CEO/CTO/board know they are on the right trajectory when there are always budget requests on the cutting room floor?
@ImposeCost Architecture tour by boat on the river, Cubs game, the art instituteโฆ Ferris Bueller had the right ideas
@Magoo This is all Iโve seenโฆ hopefully it stays quiet until there are strong signatures at least https://t.co/H5qMpKlW6y
MSRC fixed a RCE bug in TCPIP module.
I found the bug several months ago.
Its score is 9.8 and exploitation is more likely. Please apply the patch immediately.
Could this finally be the hacking + skiing con weโve been waiting for?
Wild West Hackinโ Fest is taking its conference to new heights in 2025! Join us in Denver for Wild West Hackinโ Fest @ Mile High 2025! Pre-con training: Feb. 4-5, 2025 and conference: Feb. 5-7, 2025.
Register now! โก https://t.co/teZY5w5Vlw
1/2
For those dealing with lots of Azure Windows VMs stuck in a boot loop due to CrowdStrike - you can automate the workaround using https://t.co/LdcUYqky9v CC @NathanMcNulty @GossiTheDog
@gleeda Surprised to see no mentions of threat validation. When I did DE, being able to run malicious activity to validate detection was key. Ideally detection rules should be continuously validated in prod. Engineers either need access to tooling to validate or need the skills to do so
@NathanMcNulty Yep used that and encourage it for setting interactive retention since it will work for any new data. But it seems the only way to set *archive* retention up is by table: https://t.co/qkvGkVWIqa
@NathanMcNulty I was surprised to see no option to set total archive period for log analytics at the workspace level, so thought I'd share this one-liner to set across all tables:
@cryps1s Glad Snowflake is waking people up to the infostealer risk. The target may have been accounts without MFA this time but soon people will realize the same thing can be done with their SSO tokens...
@cryps1s The standard I have been suggesting is to require a compliant or at least enrolled Intune device for conditional access in Entra ID, so you can require EDR on devices with tokens. On the vendor side I want better support for token binding as well
@arekfurt Entire hospital systems are going down due to criminally negligent AD security defaults (designed by Microsoft) and ransomware, not medical device vulnerabilities
Last Seen Users on Sotwe
kingall
Seen from Canada
Lesko Ridzic
Seen from Poland
Vijay
Seen from Indonesia
Devilboyoiterur
Seen from Pakistan
afyon engelli birey seviลmek ister
Seen from Turkey
Bir Beyefendi
Seen from Turkey
Nadacomel
Seen from Malaysia
๐น๐๐๐ โ๐ฆ๐๐ฅ๐๐ฃ๐ฅุงูุตูุงุฏ๐นIโ๏ธ
Seen from Sweden
M Badra
Seen from Egypt
ุณุงู
ูู ibnha ๐ณ๏ธโโง๏ธ๐
Seen from United Arab Emirates
Most Popular Users
Elon Musk
@elonmusk
240.6M followers
Barack Obama
@barackobama
119.2M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.5M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.2M followers
Justin Bieber
@justinbieber
90.9M followers
KATY PERRY
@katyperry
87.6M followers
Taylor Swift
@taylorswift13
81.4M followers
Lady Gaga
@ladygaga
73M followers
Virat Kohli
@imvkohli
69.8M followers
Kim Kardashian
@kimkardashian
69.8M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.9M followers
Neymar Jr
@neymarjr
62.5M followers
The Ellen Show
@theellenshow
62.4M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.7M followers