urlquery @urlquery - Twitter Profile

urlquery @urlquery

11 months ago

That is one nice open redirect https://t.co/xppxXHLrGa #phishing #rockstar2fa

1

0

1

442

urlquery @urlquery

12 months ago

https://t.co/0hqZrf9Cwx

0

365

urlquery @urlquery

over 1 year ago

#phishing For the last weeks there as been quite a few domains detected related to #tycoon at least a few hundred daily. Mostly towards Microsoft

urlquery's tweet photo. #phishing
For the last weeks there as been quite a few domains detected related to #tycoon at least a few hundred daily. Mostly towards Microsoft https://t.co/8hMRFZlkdF

0

2

0

1

685

urlquery @urlquery

over 1 year ago

This was a triumph. I'm making a note here: HUGE SUCCESS.

0

5

0

444

Who to follow

TEAM CYMRU

@teamcymru

We provide digital business risk platforms and community services. Since 2005, our reputation has remained unchallenged Check out our research @teamcymru_S2!

The Shadowserver Foundation

@Shadowserver

Our mission is to make the Internet more secure by bringing to light vulnerabilities, malicious activity and emerging threats. Join our Alliance!

Virus Bulletin

@virusbtn

Security information portal, testing and certification body. Organisers of the annual Virus Bulletin conference. @[email protected]

urlquery @urlquery

over 1 year ago

@hetznerabuse @banthisguy9349 @AezaLTD @pigeonovv @spamhaus @abuse_ch @pfcloudio @correctiv_org @mxbernhard @RETNnet @Hetzner_Online just totally a random name then i guess, what a coincidence when reply in a thread about hosting providers.

0

1

0

115

urlquery retweeted

Fox_threatintel @banthisguy9349

over 1 year ago

and another ~10k are being send today. Keep a eye out on this https://t.co/HarLz7pb5D to find urls with a sample giving 1+ Positive as a minimum The hits are giving a strong indication of malware/source does being shared for either educational purposes or malicious intend!

banthisguy9349's tweet photo. and another ~10k are being send today. Keep a eye out on this https://t.co/HarLz7pb5D to find urls with a sample giving 1+ Positive as a minimum

The hits are giving a strong indication of malware/source does being shared for either educational purposes or malicious intend! https://t.co/LwR1q6Ysx6

1

11

3

0

2K

urlquery retweeted

Fox_threatintel @banthisguy9349

over 1 year ago

5k more github urls being send! awesome work @urlquery

0

8

3

4K

urlquery retweeted

Fox_threatintel @banthisguy9349

over 1 year ago

In collab with @urlquery 9.6k github urls are being send that are potentially used for malicious purposes! Detection rules are hunted over the urls/samples that are discovered! You can find the datastream under the following query/tag: https://t.co/YQ6tOqYNA2

banthisguy9349's tweet photo. In collab with @urlquery 9.6k github urls are being send that are potentially used for malicious purposes! Detection rules are hunted over the urls/samples that are discovered!

You can find the datastream under the following query/tag: https://t.co/YQ6tOqYNA2 https://t.co/TZ3jVkJ4dV

3

80

10

35

11K

urlquery retweeted

Fox_threatintel @banthisguy9349

over 1 year ago

Did you know that you can Utileze @urlquery to search for body results? https://t.co/h7pNwMAKQl cc: @RacWatchin8872

1

30

6

16

4K

urlquery @urlquery

over 1 year ago

Make your browser look like a sandbox and you'll get free anti-phishing

1

0

1

314

urlquery @urlquery

over 1 year ago

@banthisguy9349 @abuse_ch https://t.co/tsTrmP45a8 several common file extensions padded with .lnk in the recent days. pdf, jpg and png being the most common #lummastealer payload: https://t.co/02nHMd7gR3

0

2

0

149

urlquery retweeted

RussianPanda 🐼 🇺🇦

@RussianPanda9xx

over 1 year ago

Check out the new blog I wrote on #Gabagool AiTM Phishing we discovered at @TRACLabs_ 🐟 targeting corporate and government employees. https://t.co/6ZdRTLwc6J

6

200

56

48

25K

urlquery @urlquery

over 1 year ago

@banthisguy9349 @lontze7 @500mk500 or if you want to keep the original expression: https://t.co/ZDoPGaJVik

0

2

0

111

urlquery retweeted

Fox_threatintel @banthisguy9349

over 1 year ago

#lummastealer is still heavily using b-cdn[.]net domains IOC's hxxps://privatebin.net/?d92c797cbe6e4c07#GZwqvzUKVzRRQrr1CuVLLKwXFQVdAQwAy1BV2HJk1dB2

banthisguy9349's tweet photo. #lummastealer is still heavily using b-cdn[.]net domains

IOC's
hxxps://privatebin.net/?d92c797cbe6e4c07#GZwqvzUKVzRRQrr1CuVLLKwXFQVdAQwAy1BV2HJk1dB2 https://t.co/ZJM5YEaws7

2

115

28

42

14K

urlquery retweeted

Fox_threatintel @banthisguy9349

over 1 year ago

I have had a big pleasure exploring @urlquery dataflow and existing IDS/YARA rules. I have used scraping methods in order to send IOC's/malware towards @abuse_ch and I am willing to share my hunting rules in the following bin. https://t.co/U40ur048Uh

1

31

9

14

4K

urlquery retweeted

Fox_threatintel @banthisguy9349

over 1 year ago

Secret sauce how i ended up @ this ransomware IOC. https://t.co/BJ510Ba7id within @urlquery you have the ability to scan URLS but also IDS/YARA rules get triggered on the file download. This is very essential to hunt malicious files.

banthisguy9349's tweet photo. Secret sauce how i ended up @ this ransomware IOC.
https://t.co/BJ510Ba7id
within @urlquery you have the ability to scan URLS but also IDS/YARA rules get triggered on the file download. This is very essential to hunt malicious files. https://t.co/w8LWxoBUol

1

36

6

22

7K

urlquery @urlquery

over 1 year ago

@banthisguy9349 Have you tried DM?

0

34

urlquery @urlquery

over 8 years ago

@atluxity @Quad9DNS Adding @Quad9DNS should not be a big issue as long as they are ok with it. It will just use the service for lookups during analysis. No need for a full offline blacklist.

1

0

urlquery @urlquery

over 8 years ago

Looking for sites using coin-hive? https://t.co/4GszgMDlvE or sites which uses a specific key: https://t.co/6ke27rQaxo

8

13

5

0

urlquery

@urlquery

Who to follow

Last Seen Users on Sotwe

Trends for you

Most Popular Users