SVP of Partnerships @binalyze. Disrupting and innovating #DFIR to make the world more #CyberResilient with Incident Investigation and Response Automation.
Meet with the Binalyze team at Black Hat Europe and unlock new revenue streams in your MSSP! Join us at Booth 442, Dec 6-7, to see a live demo.
Pre-book your MSSP demo session here: https://t.co/6laHy9Jccc
#Networking#Binalyze#BlackHatEurope#DFIR#IR#incidentresponse#MSSP
MITRE ATT&CK Analyzer version 3.1.0 is out now.
Updated highlights include:
✅ Each detection now links to a MITRE ATT&CK Technique instead of Tactic only.
#Yara:
✅ Added coverage for various malware families mentioned in our latest reports.
✅ Enhanced detection of anomalies for various techniques such as masquerading, defense evasion, credentials access, suspicious PowerShell scripts, and more.
#Dynamo:
✅ Enhanced detection of HTML Smuggling technique for more Chromium-based browsers.
✅ Enhanced detection of suspicious Firewall rules, Scheduled tasks, and Services.
#incidentresponse #investigation #dfir
MITRE ATT&CK Analyzer version 2.5.0 from @binalyze is out now.
Update highlights:
✅Yara: Added detection for various malware families observed in recent reports.
✅Enhanced detection of various techniques used for obfuscation, masquerading, initial access, fileless malware execution and more.
✅Updated our ruleset that indicates vulnerable and malicious drivers which now covers over 1300 unique IOCs.
Dynamo:
✅Enhanced detection of HTML smuggling indicators.
✅Enhanced detection of various persistence techniques.
Binalyze MITRE ATT&CK Analyzer version 2.2.0 has just been released, and it comes packed with some fantastic updates!
In this latest release, we've made significant improvements to enhance your threat detection capabilities. Here are the key highlights:
Dynamo Enhancements:
✅ We've added detection for suspicious scheduled tasks executing suspicious utilities, extensions, or running from uncommon locations.
✅ New detection capabilities for suspicious registry persistence methods have been integrated.
✅ Our team has enhanced detection for the HTML smuggling technique, even when the file is no longer present.
✅ Various detections have been added to identify tactics used by malware targeting macOS and Linux.
Yara Updates:
✅ Detection for Cobalt Strike and Havoc framework has been updated to keep you ahead of evolving threats.
✅ We've revamped our detection capabilities to cover various techniques observed in the latest reports, including masquerading and obfuscated/encoded content.
These intelligence-driven updates are designed to give you confidence that you're always a step ahead of adversaries
#Cybersecurity #ThreatDetection #Binalyze #MITREATTACK #SecurityUpdates @EmreTinaztepe@binalyze@Cyb3rMonk@Computeus7@TwinTwin911
AIR is evolving with groundbreaking new features. Thank you to everyone who contributed feedback and suggestions; we can’t wait to share what’s next in AIR 4.0. Join us on October 24 at 16:00 UK time for our ‘Unlock the power of IR’ webinar.
Register 👉: https://t.co/6V7Jl3sm2s
A year ago, I wrote a #Yara rule to detect hidden DLLs inside ISO archives. They are still a thing.
Sha1:d417fe043ef60846e08f08df8dd9f3968a512a23
0 detection two months later.
However we at @binalyze can detect it just fine.
Bad guys are clever, but not enough for @binalyze and our powerful Dynamo engine.
Crypto miner using a huge file to evade detection.
No #Yara, just a little bit of #DFIR.
#ThreatHunting
We've arrived at the International Cyber Expo in London.
Stop by booth N73 to meet the team and get a LIVE demo of AIR!
We're very busy, so you can skip the queues and book your demo here 👉 https://t.co/nKhbLjKPjM
#DFIR#DigitalForensics#IncidentResponse#ICE2023#London
Our portfolio company @binalyze secured $19M in Series A funding round, led by @MoltenVentures, and we're delighted to reaffirm our long term commitment to the firm. We welcome the participation of both new & existing investors.
Congrats @EmreTinaztepe & the entire team!🎉
👉Added detection for novel technique where Office document gets embedded into PDF file for defense evasion.
👉Added detection for various families and TTPs mentioned in the latest reports.
*Update applies to Windows, Linux and macOS.
https://t.co/ewrbhqYQJ3
🙌We're thrilled about our investment in @binalyze!
Looking forward to being part of the journey with
@EmreTinaztepe and team!
Learn more the latest startup to join our portfolio👇
🔗https://t.co/vo7L7i7En9
#ciscoinvests#security
Molten is proud to lead the $19M Series A in @Binalyze to supercharge its innovative Digital Forensics & Incident Response (#DFIR) platform. Read more: https://t.co/9B7iUcPDTn
We couldn’t be more excited to share that Binalyze has raised $19M via a Series A investment.
Thank you to our investors, customers and colleagues for your continued support.
Join the DFIR revolution; try Binalyze AIR now: https://t.co/6KiHDRmujF
#DFIR#News#Investment
Binalyze Secures $19 Million in Series A Funding
Led by Molten Ventures with participation from Earlybird Digital East and OpenOcean, and new investors Cisco Investments, Citibank Ventures, and Deutsche Bank Ventures.
https://t.co/H7EYaYsyHV
#DFIR#News#Cybersecurity
We're excited to be attending the Techno Security & Digital Forensics Conference in Pasadena, CA 🇺🇸
Can't make it? Don't forget to book a demo online here 👉 https://t.co/dW1puSynOH
#Event#Demos#DFIR#DigitalForensics#IncidentResponse
MITRE ATT&CK: Version 1.5.1 is here!
👉Improved detection for privilege escalation tools such as Potato (Juicy Potato and similar) and others.
👉Improved detection for various pentesting frameworks and hacktools.
(continued)
MITRE ATT&CK: Version 1.4.0 is here!
👉Updated detection for indicators of various hacking tools used for discovery, lateral movement and privilege escalation.
👉Updated detection for packers often used in malicious executables.
Continued...