Mr B0b @_mrb0b - Twitter Profile

_MrB0b retweeted

over 2 years ago

⚠️ Use Microsoft Teams? Watch out for TeamsPhisher! While it is not usually possible to send files to MS Teams users outside your org, by security researchers found a bypass by manipulating Teams web requests 🔥 https://t.co/r7Yzj8fqLC Examples of MS Teams phish lures ⬇️ 1/3

BushidoToken's tweet photo. ⚠️ Use Microsoft Teams? Watch out for TeamsPhisher!

While it is not usually possible to send files to MS Teams users outside your org, by security researchers found a bypass by manipulating Teams web requests 🔥

https://t.co/r7Yzj8fqLC

Examples of MS Teams phish lures ⬇️ 1/3 https://t.co/DzaUHSN3sj

2

406

141

179

83K

_MrB0b retweeted

Mehmet Ergene

@Cyb3rMonk

almost 3 years ago

I'm happy to introduce AC&CD! You are detecting the wrong C2 beaconing traffic(and I was, too, long ago), so I've fixed it and put it in a Jupyter Notebook! Wanna detect Cobalt Strike, Sliver, Mythic, and all known C2 frameworks' beaconing? #ThreatHunting https://t.co/BWen5oqkbU

7

344

119

123

39K

_MrB0b retweeted

Thomas Naunheim @Thomas_Live

almost 3 years ago

Microsoft has been published a #TokenTheft playbook which includes investigation checklist, hunting queries, response/recovery task list but also accompanying decision tree. A must read for every #AzureAD, #Entra, #SecOps admin and architect. https://t.co/qtfb831O3H

3

472

186

256

43K

_MrB0b retweeted

Matt Johansen

@mattjay

almost 3 years ago

🚨 Over 250,000 Fortinet firewalls publicly accessible on the Internet. They just dropped a patch for a major Remote Code Execution vulnerability. ...and then announced the vuln may have been used in attacks already. Lets dive in 👇

mattjay's tweet photo. 🚨 Over 250,000 Fortinet firewalls publicly accessible on the Internet.

They just dropped a patch for a major Remote Code Execution vulnerability.

...and then announced the vuln may have been used in attacks already.

Lets dive in 👇 https://t.co/blVxdfcZ6p

13

622

232

157

187K

Who to follow

Matt Hand

@matterpreter

Building @originhq | Author, Evading EDR @nostarch

Mr.Un1k0d3r

@MrUn1k0d3r

I don't know how to search on Google so I do research on my own and tweet about it. Hacking as a life style https://t.co/a05mevChzu

Ryan Cobb

@cobbr_io

Red Teamer | Hobbyist Software Developer | Operator @SpecterOps Developer: Covenant, SharpSploit, PSAmsi

_MrB0b retweeted

Olaf Hartong @olafhartong

about 3 years ago

At @falconforceteam we love automation. We apply this to a lot of our processes, including Detection Engineering. We will be sharing our internal tooling for validation, deployments etc as open source software. Enjoy our first blog, written by @gijs_h https://t.co/mYR8VHUVhc

6

136

45

46

12K

Mr B0b @_MrB0b

over 3 years ago

Nice blog post from @g3rzi (@CyberArk) 👉Breaking Docker Named Pipes SYSTEMatically: Docker Desktop Privilege Escalation – Part 1 https://t.co/IeYXNT8UV7

0

1

0

88

_MrB0b retweeted

Jean de Dieu Nyandwi

@Jeande_d

over 3 years ago

MIT Introduction to Deep Learning - 2023 Starting soon! MIT Intro to DL is one of the most concise AI courses on the web that cover basic deep learning techniques, architectures, and applications. 2023 lectures are starting in just one day, Jan 9th! https://t.co/1LImiUsIp5

Jeande_d's tweet photo. MIT Introduction to Deep Learning - 2023 Starting soon!

MIT Intro to DL is one of the most concise AI courses on the web that cover basic deep learning techniques, architectures, and applications.

2023 lectures are starting in just one day, Jan 9th!

https://t.co/1LImiUsIp5 https://t.co/fuDhFFWEDq

35

2K

569

1K

219K

_MrB0b retweeted

rootsecdev

@rootsecdev

over 3 years ago

Free cloud training workshops 🚨 AWS CIRT announces the release of five publicly available workshops | AWS Security Blog https://t.co/kVoYVQXOMl

0

220

71

52

26K

_MrB0b retweeted

Martin Geisler @mrtngslr

over 3 years ago

I'm proud to announce that we've just open sourced a four day Rust course I've been working on! Read it here: https://t.co/5N0UOKL6Gt #rust #rustlang #android

6

251

67

73

33K

_MrB0b retweeted

chompie

@chompie1337

over 3 years ago

Demonstrating CVE-2022-37958 RCE Vuln. Reachable via any Windows application protocol that authenticates. Yes, that means RDP, SMB and many more. Please patch this one, it's serious! https://t.co/ikOrTvQIJs

68

4K

996

572

0

_MrB0b retweeted

blackorbird

@blackorbird

over 3 years ago

THREAT HUNTING PLAYBOOK LEARN HOW TO EMBRACE A PROACTIVE SECURITY POSTURE https://t.co/QjmkW2XI6r

12

1K

330

579

0

Mr B0b @_MrB0b

over 3 years ago

9. Import the `mastodon_import_file.csv` file from your #Mastodon account 10. Enjoy ;) 6/6

0

Mr B0b @_MrB0b

over 3 years ago

Are you also preparing a way out on #Mastodon (just in case @elonmusk messes up) ? He is a quick and dirty #mastodonmigration way to generate a csv file of your Twitter followings handles to be imported on Mastodon all at once. 🧵 1/6

1

0

1

0

Mr B0b @_MrB0b

over 3 years ago

7. Download the `twitter_to_mastodon.sh` https://t.co/rHB2S5FDJF bash script and replace `<curl_bash_command>` with the modified curl bash command line 8. Run the bash script (you'll need the @TomNomNom amazing https://t.co/TSyYML5wXH tool to parse json files) 5/6

1

0

_MrB0b retweeted

Spiky Sabra @SpikySabra

over 3 years ago

A lot has been said about removing hooks and kernel callbacks to stop an EDR from detecting malicious activity. What if we could terminate the process completely? Well ...we can. Check this out: https://t.co/8RrkzXX0Lb

4

333

109

91

0

_MrB0b retweeted

Rémi Escourrou @remiescourrou

over 3 years ago

Here we go, we are finally releasing all the materials of our workshop at @defcon and our talk at @BSidesLV on “CI/CD : The new Eldorado” 🔥🔥🔥 With this content, you will go through… 🧵 https://t.co/V6gJg6IiG9

5

221

79

98

0

_MrB0b retweeted