With a process that began two and a half years ago, I'm very excited to announce that I've written a book with No Starch Press! 🎉 "Practical Purple Teaming" tells you all you need to know to get started with collaborative offensive testing. nostarch.com/purple-teaming

Microsoft Direct Send and Cloudflare the approved tech stack of phishing kits

How did this AI slop get a talk at the main track @ DEFCON????????? github.com/poppopjmp/VMDr…

🚨 New CTF: Azure APT 🏆 Step into the shoes of an attacker targeting Azure. Use a malicious OAuth app, bypass restrictions, and capture the flag. Can you solve all 12 CTF's and WIN our belt? Test your skills with this month's CTF by Lior Sonntag 👉 cloudsecuritychampionship.com/challenge/3

🚨 New Lab Just Released: Specter’s Domain Heist – Private Case #35218 This lab is based on a detailed intrusion from our private case repositories 👇 📥 Workstation Compromise ➡️ Persistent Access ➡️ Discovery➡️ Privilege Escalation ➡️ Lateral Movement ➡️ Data Exfil Link 👇

A very fun AI SOC episode is airing next week! Very real, very AI, and a lot of SOC!

🌟New report out today!🌟 Blurring the Lines: Intrusion Shows Connection With Three Major Ransomware Gangs Analysis and reporting completed by Renzon, EncapsulateJay, Roman Konicek, & Adam Rowe Audio: Available on Spotify, Apple, YouTube and more! Report:⬇️

Episode 242 "The AI SOC: Is This The Automation We've Been Waiting For?" of Cloud Security Podcast where hosts Dr. Anton Chuvakin and Timothy Peacock interview Augusto Barros (Augusto Barros) Prophet Security about, well, what else? #AI #SOC! cloud.withgoogle.com/cloudsecurity/…

A threat actor installed Huntress. ... a hysterical mistake on their part, giving us first-hand insight to their tooling, workflow & routine. Phishing infra, stealer logs, Telegram+dark web sites, AI... Hilarious goldmine of cybercrime deets with a front row seat:

🚀 It’s official — my new book is live on Amazon: MAoS – Malware Analysis on Steroids This book is not like the others. It’s built on years of raw, hands-on research, reverse engineering sessions at 3 AM, and real-world incident response cases. Inside, you’ll find full A–Z

Huntress video will go live tomorrow at 9am EDT. Hopefully educates people about managed EDR, malware triage, parts of threat hunting, and of course answers some questions people had about the blog post. Appreciate John Hammond and Huntress being open to the dialogue.

Dear algorithm, please lead me to my fellow cybersecurity professionals.

"The Zoom installer was created using Inno Setup, a free installer for Windows programs, and served as the delivery mechanism for a multi-stage malware deployment and execution chain. The trojanized installer was a downloader, more publicly known as “d3f@ckloader”, and is..."

Check out Titanis, my new C#-based protocol library! It features implementations of SMB and various Windows RPC protocols along with Kerberos and NTLM. github.com/trustedsec/Tit…

Ifrit Red Team Lab from Vulnlab is now live on Hack The Box! It’s modeled on a real engagement and includes a SIEM so you can check how "loud" you are. app.hackthebox.com/prolabs/overvi…

⚡️NEW Module: Analyzing Obfuscated Shellcode - Hands-on - Live analysis in your browser - zero setup Beginner-friendly introduction to obfuscated shellcode extraction and analysis 👇 #ReverseEngineering #Malware aceresponder.com/learn/obfuscat…

A few cards are face up, but this is just a glimpse...

All the pieces are in place: dice, chips, cards, and now the deck itself...

PingCastle-Notify update ! 🎉 - Add your own custom modules 🏗️ - Updated Slack & Teams, added Discord 🛠️ - New options: -noscan, -full_report, notify when no changes 🆕 - ANSSI rules link included 🐳 ➡️ github.com/LuccaSA/PingCa…

A personal update... after nearly 20 years at Google, today is my last day! I'm going to be working on independent research for the foreseeable future, then who knows! I've worked with so many talented people, made so many friends and seen incredible research over the years 🫡