Olivia
Online
Sources & Methods Newsletter
@srcmtd
Monthly newsletter for cyber threat intelligence (CTI) information sources, tools, and articles — avatar by smashingstocks
US
Joined January 2022
105 Following
17 Followers
148 Posts
Pinned Tweet
Happy Holidays! Issue 004 is here 🎁 https://t.co/kVvopjiYkg
I'm so proud of things my teammates have published and worked on this year. Stuff like the monthly @redcanary Intel Insights: https://t.co/aoc4BGvrWp
Maybe something important for your next year calendar, the https://t.co/J5YOkRvWjW 2023 and https://t.co/zuFtxtw2ub 2023 will take place in Luxembourg next year from Monday 16th October until Thursday 19th October.
This is a very cool process for creating intelligence requirements from the Red Hat infosec team! I'm a big fan of the Venn Diagram approach to explaining threat modeling. (h/t @cocaman)
✍️ Process: https://t.co/oMeqKK4WRV
📊 Spreadsheet: https://t.co/7KM4M1CS0J
Who to follow
B
@TLPAmberAle
Something something InfoSec something something not logged by default
G1LL
@Cybergill
Threat Intel Analyst | Tech Nerd | Security Researcher | Aspiring Forensics Investigator | US Military Veteran | #CTI #OSINT #DFIR | Too employed to understand
Jason Sifford 
@jason_sifford
Serial Entrepreneur
ICYMI: @_wald0 dropped a new blog post today: Passwordless Persistence and Privilege Escalation in Azure
You can read it here: https://t.co/AWzutPqdgF
Russian cyber operations in Ukraine: I’ve spent months collating and analyzing data on…
» Their military effectiveness
» Reasons why they weren’t more impactful
» Lessons for other states
The result is a very long paper and this 🧵... https://t.co/GX3TdoYryW
Investigation Scenario 🔎
A user reported their mouse moving around on the screen by itself for a few minutes. The cursor appeared to open and close a few documents on the desktop.
What do you look for to investigate whether an incident has occurred?
#InvestigationPath #DFIR
MISP Training Video December Edition - Best Practices for Encoding Threat Intelligence and Leveraging the information in MISP to Make Threat Landscape Report.
#threatintel #threatintelligence #misp #opensource
https://t.co/wyNPZjdhpy
We just published our yearly study of malicious #C2 infrastructure identified using proactive scanning and other collection methods throughout 2022. Key findings include:
North Korean cyber spies deploy new tactic: tricking foreign experts into writing research for them. With experiences from @DanDePetris & @j3nnyt0wn, and insight from @MsftSecIntel & @BAES_Digital https://t.co/vKpH0ijibt
BLOG POST: An update on some of our Iranian #APT tracking, showing continued victim connections to 107.173.231.114 (🇺🇸), a longstanding C2 server.
H/T @ChicagoCyber for the course correct on attribution. 🤜🤛
https://t.co/5Yh0kIX92g
🔔DING! DING!🔔#OpenCTI 5.4.0 is out! Huge joint effort from the #Filigran team and all community contributors 🙏! Bulk search, custom workflow, analyst workbench, performances improvement, #STIX grouping... #CTI #CyberSecurity #ThreatIntelligence
➡️https://t.co/TOxDjyCBvP
👇Our favorite tools for hunting and tracking malicious infrastructure. A Thread 🧵👇
1/9
BumbleBee Zeros in on Meterpreter
➡️Initial Access: Contact Forms/Stolen Images/ISO
➡️PrivEsc: WSReset & Slui UAC Bypass, Zerologon CVE2020-1472
➡️Cred Access: Procdump LSASS, reg dump SAM/SEC/SYS hives
➡️C2: BumbleBee, Meterpreter, CobaltStrike
https://t.co/Obm5cNospg
1/X
That's a wrap for #BRUNCHCON! Sure I missed the start (sleeping—no reason) but this was a great set of talks in a short time. See you next year 😄👋
This was my favorite talk in @CYBERWARCON or #BRUNCHCON—as a dev and former red teamer that loves the infra and tooling side, and because of the ample and clear evidence given to relate the two loaders. I learned a lot from it 👏
Now @tiskimber and Genevieve Stark on the SHELLSTING loader, which could be a replacement for BazarLoader
My new number one consumer security tip: never, ever move a conversation to WhatsApp.
#CYBERWARCON
Last Seen Users on Sotwe
M Badra
Seen from France
ลอปอ.
Seen from Thailand
ferhat_Kaptan48
Seen from Oman
เด็กบ้านนอกหำวัยรุ่นหาเย็ดเด็กชอบหีเด็กหีผู้ใหญ่
Seen from Thailand
Meltem
Seen from Netherlands
Can Adıyaman
Seen from Turkey
cizre
Seen from Turkey
Ronzo
Seen from Singapore
Sen ben
Seen from Turkey
مكاوي ولد مكه
Seen from Bahrain
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.1M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.3M followers
Kim Kardashian
@kimkardashian
69.4M followers
Virat Kohli
@imvkohli
68.7M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers