Sotwe logo Sotwe logo

Top Tweets for #SysmonForLinux

0xrawsec's profile image
RawSec @0xrawsec
Excited for @hack_lu! In addition to my planned talk, I'll conduct a 90-min workshop to introduce Kunai: your new Linux threat-hunting tool (an alternative to #SysmonForLinux). See you there! More info: https://t.co/qv8hqFKC5y
0
24
10
2
3K
0xrawsec's profile image
RawSec @0xrawsec
If you are looking for a #SysmonForLinux alternative or if you are just curious ! Take a look to kunai: https://t.co/LafBReqB4v If you want to try the stuff out, there is a pre-compiled binary on GitHub: https://t.co/I8Mj8ZsXpj #ebpf #linux #threathunting #dfir
0
3
1
1
281
0xdea's profile image
raptor @0xdea
#Encoding is hard, exhibit no.2368474 #SysmonForLinux // ht @timb_machine https://t.co/NsvwgXa6Nw
0
5
0
0
935
0xrawsec's profile image
RawSec @0xrawsec
Its been a while I did not posted on my #SysmonForLinux kind of project ! It is because it takes a lot of time to develop, here is where I am. Example, executing dig command: - we see execve event with hashes #ThreatHunting 1/6
0xrawsec's tweet photo. Its been a while I did not posted on my #SysmonForLinux kind of project ! It is because it takes a lot of time to develop, here is where I am. Example, executing dig command: - we see execve event with hashes #ThreatHunting 1/6 https://t.co/qaz2KUiXZt
1
19
10
6
3K
0xrawsec's profile image
RawSec @0xrawsec
I think I got bored waiting after #SysmonForLinux so I decided to start my own BPF based Linux monitoring project. Roadmap: - shared object loading - driver loading - dns queries - network connections Tell me if you want other stuffs for a first release ! #ThreatHunting
0xrawsec's tweet photo. I think I got bored waiting after #SysmonForLinux so I decided to start my own BPF based Linux monitoring project. Roadmap: - shared object loading - driver loading - dns queries - network connections Tell me if you want other stuffs for a first release ! #ThreatHunting https://t.co/M6Olrkcy5O
6
149
41
36
0
Cyb3rWard0g's profile image
Roberto Rodriguez 🇵🇪 Verified account @Cyb3rWard0g
I 💖 what @cyb3rops did here with auditd 🙏 https://t.co/QFcrVI9CTl and the extensions and additional tagging from @bfuzzy1 🚀 https://t.co/UUyIansvVT Great examples to base #SysmonForLinux collection rules 🙏 I will start adding and testing those! Thank you for sharing! 🍻
2
45
17
5
0
Cyb3rWard0g's profile image
Roberto Rodriguez 🇵🇪 Verified account @Cyb3rWard0g
🚨 Experimenting with a @MITREattack based approach to manage our #Sysmon configs 🚀 Sharing our #SysmonForLinux configs first! Still a WIP, but would 💖 to get your feedback! 😎 All research and community driven! #MSTIC @russmcsec @jessen_kurien https://t.co/Yhr7Wh2CUI
Cyb3rWard0g's tweet photo. 🚨 Experimenting with a @MITREattack based approach to manage our #Sysmon configs 🚀 Sharing our #SysmonForLinux configs first! Still a WIP, but would 💖 to get your feedback! 😎 All research and community driven! #MSTIC @russmcsec @jessen_kurien https://t.co/Yhr7Wh2CUI https://t.co/1f4z9K1yjG
Cyb3rWard0g's profile image
Roberto Rodriguez 🇵🇪 Verified account @Cyb3rWard0g
🚨 Learning how to install #Sysmon for Linux 🐧 & send security events to #AzureSentinel in a research lab environment!! 🧪 #MSTIC #Microsoft 📡 Sysmon (SysinternalsEBPF) -> Syslog -> SIEM 🚀 ✅ Scripts ✅ ARM templates ✅ Sysmon configs and more.. https://t.co/juoMCueKU5
5
473
172
116
0
3
144
65
26
0
OSSEM_Project's profile image
OSSEM @OSSEM_Project
🚀 Any NEW fields on the schemas for #SysmonForLinux events compared to Windows🤔? @Cyb3rPandaH used our #Sysmon for Windows & Linux data dictionaries in a python 🐍 script to answer that😎 ✅ ParentUser (ProcessCreate) ✅ User (EID 5,9,11) 🖇️ Script: https://t.co/vO1mjtvGnw
OSSEM_Project's tweet photo. 🚀 Any NEW fields on the schemas for #SysmonForLinux events compared to Windows🤔? @Cyb3rPandaH used our #Sysmon for Windows & Linux data dictionaries in a python 🐍 script to answer that😎 ✅ ParentUser (ProcessCreate) ✅ User (EID 5,9,11) 🖇️ Script: https://t.co/vO1mjtvGnw https://t.co/5SC2ozQIrB
Cyb3rWard0g's profile image
Roberto Rodriguez 🇵🇪 Verified account @Cyb3rWard0g
🚨 Learning how to install #Sysmon for Linux 🐧 & send security events to #AzureSentinel in a research lab environment!! 🧪 #MSTIC #Microsoft 📡 Sysmon (SysinternalsEBPF) -> Syslog -> SIEM 🚀 ✅ Scripts ✅ ARM templates ✅ Sysmon configs and more.. https://t.co/juoMCueKU5
5
473
172
116
0
1
52
23
8
0
OSSEM_Project's profile image
OSSEM @OSSEM_Project
@Cyb3rWard0g 🚨 Thanks to @Cyb3rPandaH , we updated our #Linux data dictionaries to keep up with the event schemas from #SysmonForLinux and share them with the community 🚀 I see some new fields names 🙊👀 https://t.co/SQtaKTgXYp @OTR_Community
0
4
4
0
0
kevsecurity's profile image
Kevin Sheldrake @kevsecurity
Hey everyone. Thanks for all the messages - it’s been great waking up in a different time zone to see them all. Hope you all find #sysmon #sysmonforlinux useful! #Sysinternals25 #Sysinternals #eBPF
0
25
0
0
0
kevsecurity's profile image
Kevin Sheldrake @kevsecurity
@EricaZeli @olafhartong @markrussinovich @mxatone @Sysinternals @Cyb3rWard0g I should say, the major design decision for #sysmonforlinux was that you wouldn’t need to recompile your kernel or install symbols packages or limit yourself to BTF environments. I wrote the discovery code to work it out itself. It will need improving but the aim is there.
1
3
0
0
0
kevsecurity's profile image
Kevin Sheldrake @kevsecurity
So happy to see my Linux port of #sysmon finally being released! #Sysinternals #sysmonforlinux
12
374
50
10
0

Last Seen Hashtags on Sotwe

cdzinha
Seen from Brazil
BLEACH
Seen from United States
BaitedStraights
Seen from Singapore
cheating video*
Seen from Argentina
HilalYelekçi
Seen from Turkey
ensest
Seen from Turkey
stripchatlive
บางใหญ่นัดเย็ด
Seen from Thailand
bffs
Seen from United Arab Emirates
ContemporaryRailing
Seen from United Kingdom

Trends for you

1
Oliver Tree
Under 10K tweets
2
Germany
Under 10K tweets
3
Netherlands
Under 10K tweets
4
#hottiegabby
Under 10K tweets
5
Izzy
Under 10K tweets
6
Happy Anniversary
Under 10K tweets
7
Denny Hamlin
Under 10K tweets
8
Hezbollah
Under 10K tweets
9
The Office
Under 10K tweets
10
Weather Channel
Under 10K tweets

Most Popular Users

elonmusk's profile image
1
Elon Musk Verified account
@elonmusk
240.3M followers
barackobama's profile image
2
Barack Obama Verified account
@barackobama
119.3M followers
realdonaldtrump's profile image
3
Donald J. Trump Verified account
@realdonaldtrump
111.6M followers
cristiano's profile image
4
Cristiano Ronaldo Verified account
@cristiano
109.5M followers
narendramodi's profile image
5
Narendra Modi Verified account
@narendramodi
107M followers
rihanna's profile image
6
Rihanna Verified account
@rihanna
97.4M followers
nasa's profile image
7
NASA Verified account
@nasa
92.1M followers
justinbieber's profile image
8
Justin Bieber Verified account
@justinbieber
90.7M followers
katyperry's profile image
9
KATY PERRY Verified account
@katyperry
87.1M followers
taylorswift13's profile image
10
Taylor Swift Verified account
@taylorswift13
80.9M followers
ladygaga's profile image
11
Lady Gaga Verified account
@ladygaga
72.5M followers
kimkardashian's profile image
12
Kim Kardashian Verified account
@kimkardashian
69.5M followers
imvkohli's profile image
13
Virat Kohli Verified account
@imvkohli
69M followers
youtube's profile image
14
YouTube Verified account
@youtube
68.6M followers
billgates's profile image
15
Bill Gates Verified account
@billgates
63.6M followers
theellenshow's profile image
16
The Ellen Show
@theellenshow
62.5M followers
cnn's profile image
17
CNN Verified account
@cnn
61.9M followers
neymarjr's profile image
18
Neymar Jr Verified account
@neymarjr
61.6M followers
x's profile image
19
X Verified account
@x
60.9M followers
selenagomez's profile image
20
Selena Gomez Verified account
@selenagomez
60.2M followers