Sotwe logo Sotwe logo

Top Tweets for #ShimCache

habib_karatas's profile image
Habib Karataş Verified account @habib_karatas
Sizden gelen sorular; Bir disk imajından #MFT, #Prefetch, #Amcache ve #Shimcache gibi artefaktları analiz etmek mümkün müdür? Örneğin, #CyberDefenders gibi platformlarda paylaşılan disk imajları bu tür analizler için yeterli veri sağlar mı? Bu tür analizler için hangi araçlar tercih edilmelidir?
1
8
0
2
914
MagnetForensics's profile image
Magnet Forensics Verified account @MagnetForensics
In #DFIR, Windows operating systems leave behind a wealth of artifacts that can be invaluable, including #ShimCache (Application Compatibility Cache) and #AmCache (Application Activity Cache). In this blog, learn more about their significance: https://t.co/qCw9AY9bHM
5
7
2
2
737
Inceptionsec's profile image
Inception Security Verified account @Inceptionsec
🔍 It's #ForensicFriday! 🕵️‍♂️ Dive into our latest blog post, where we explore the importance of #Shimcache in digital forensics and incident response investigations. Discover how this Windows feature can reveal crucial insights for your #cybersecurity needs. 🔐👩‍💻 🔗 https://t.co/RYxUH8UAup
0
10
3
0
34K
upadhyayraj11's profile image
raj Upadhyay @upadhyayraj11
Windows Artifact Series || ShimCache !!! Question : If we run #Executable from command prompt (#CMD) then, will it be visible in #ShimCache entries ? !!! #dfir #digitalforensics #shimcache #4N6 #cybersecurity #WindowsArtifacts https://t.co/bAW4Rk5Kve
0
3
0
0
0
inversecos's profile image
inversecos Verified account @inversecos
1\ #APT Technique of #Persistence via #Shimcache Databases As seen used by Fin7 and *Others* In this example I used inject.dll to inject a bad.dll (the pop-up) and also called RedirectExe to open cmd.exe. You can replace bad.dll with your Cobalt Strike beacon.
4
218
71
63
0
inversecos's profile image
inversecos Verified account @inversecos
#APT Hunting: Look for #shimcache persistence (still being used by TAs) where "sdbinst.exe" is used to register a malicious shim db file to patch existing processes on disk i.e. svchost.exe. These files will be stored in the AppCompatFlags\Custom and InstalledSBD folders
0
36
8
5
0
mathias_fuchs's profile image
Mathias Fuchs @mathias_fuchs
Finally finished the next episode of DFIR in 120 seconds - Shimcache. Thanks for all your support. https://t.co/SDse6Y12FI or directly at youtube https://t.co/LtmeveuwN8 #DFIR #Shimcache
mathias_fuchs's tweet photo. Finally finished the next episode of DFIR in 120 seconds - Shimcache. Thanks for all your support. https://t.co/SDse6Y12FI or directly at youtube https://t.co/LtmeveuwN8 #DFIR #Shimcache https://t.co/WzwogqT7rV
1
41
17
3
0
ondrejkrehel's profile image
Ondrej Krehel @ondrejkrehel
Learn how to leverage #Amcache and #Shimcache artifacts in a #digital #forensics case. https://t.co/tTGrhpJVqr #cybersecurity #infosec
0
1
1
0
0
tailwindfor's profile image
jj @tailwindfor
https://t.co/b2q8WMnYzP #fireeye #dfir #shimcache
0
0
0
0
0
DFIRSummit's profile image
DFIRSummit @DFIRSummit
Matias Bevilacqua from @Mandiant presenting on #Shimcache & #AmCache enterprise-wide "hunting" #ThreatHuntingSummit #DFIR
DFIRSummit's tweet photo. Matias Bevilacqua from @Mandiant presenting on #Shimcache & #AmCache enterprise-wide "hunting" #ThreatHuntingSummit #DFIR https://t.co/CEAScEquuN
0
3
0
0
0
st4rter's profile image
Mr. Market @st4rter
#DFIR Awasome blogpost about #shimcache https://t.co/qvolCMPE9T
0
1
1
0
0
Mandiant's profile image
Mandiant (part of Google Cloud) @Mandiant
. @Mandiant consultants built a better way to do forensics on #ShimCache. Hope it wins @volatility plugin contest! https://t.co/sRX8TLUI0W
0
7
14
0
0

Last Seen Hashtags on Sotwe

fun
Seen from United States
momson ()
Seen from United States
taboo
Seen from Netherlands
pussyworship
educationalist
Seen from Turkey
author
Seen from United States
madreincesto
Seen from France
gaziantepesc
Seen from Turkey
KayleyGunner
somn
Seen from Germany

Trends for you

1
Fauci
Under 10K tweets
2
Father's Day
Under 10K tweets
3
Juneteenth
Under 10K tweets
4
Lebanon
Under 10K tweets
5
Israel
Under 10K tweets
6
Ivory Coast
Under 10K tweets
7
Good Sunday
Under 10K tweets
8
Ecuador
Under 10K tweets
9
#UFCVegas119
Under 10K tweets
10
Hezbollah
Under 10K tweets

Most Popular Users

elonmusk's profile image
1
Elon Musk Verified account
@elonmusk
240.4M followers
barackobama's profile image
2
Barack Obama Verified account
@barackobama
119.3M followers
realdonaldtrump's profile image
3
Donald J. Trump Verified account
@realdonaldtrump
111.7M followers
cristiano's profile image
4
Cristiano Ronaldo Verified account
@cristiano
110M followers
narendramodi's profile image
5
Narendra Modi Verified account
@narendramodi
107M followers
rihanna's profile image
6
Rihanna Verified account
@rihanna
97.5M followers
nasa's profile image
7
NASA Verified account
@nasa
92.1M followers
justinbieber's profile image
8
Justin Bieber Verified account
@justinbieber
90.8M followers
katyperry's profile image
9
KATY PERRY Verified account
@katyperry
87.3M followers
taylorswift13's profile image
10
Taylor Swift Verified account
@taylorswift13
81.2M followers
ladygaga's profile image
11
Lady Gaga Verified account
@ladygaga
72.7M followers
kimkardashian's profile image
12
Kim Kardashian Verified account
@kimkardashian
69.6M followers
imvkohli's profile image
13
Virat Kohli Verified account
@imvkohli
69.4M followers
youtube's profile image
14
YouTube Verified account
@youtube
68.6M followers
billgates's profile image
15
Bill Gates Verified account
@billgates
63.7M followers
theellenshow's profile image
16
The Ellen Show
@theellenshow
62.5M followers
neymarjr's profile image
17
Neymar Jr Verified account
@neymarjr
62.1M followers
cnn's profile image
18
CNN Verified account
@cnn
61.9M followers
x's profile image
19
X Verified account
@x
60.9M followers
selenagomez's profile image
20
Selena Gomez Verified account
@selenagomez
60.4M followers