This probably the best use of AI I have seen

A tool that uses the Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server. github.com/netero1010/EDR… #infosec #pentest #redteam

🚨 Exciting news for all hackers and tech enthusiasts! The #DEFCON32 talks are now available on YouTube! 🎉 youtube.com/playlist?list=… #infosec #pentest #redteam #blueteam

Phishing remains one of the most widespread cyberattacks - here are some tips on how to avoid falling victim! 5 Phishing Email Scams and How NOT To Fall For Them huntress.com/blog/5-phishin… #infosec

LOLESXi by blueteam0ps features a comprehensive list of binaries/scripts natively available in VMware ESXi that adversaries have utilised in their operations. lolesxi-project.github.io/LOLESXi/# #infosec #pentest #redteam #blueteam

That's a Cybersecurity Advisory by Cybersecurity and Infrastructure Security Agency worth reading, with many important points to note. Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Critical Infrastructure Sector Organization cisa.gov/news-events/cy… #infosec #blueteam

The fascinating security model of dark web marketplaces boehs.org/node/dark-web-… #infosec

Carseat by Steven is a Python implementation of GhostPack's Seatbelt, a situational awareness tool for analyzing Windows security configurations. github.com/0xthirteen/Car… #infosec #pentest #redteam

Twitter: "Mastering Sysmon: Deploying, Configuring, and Fine-Tuning" by dfirinsights A free mini eBook for #DFIR professionals with practical steps to deploy, fine-tune, and start logging with Sysmon. dfirinsights.com/2024/11/27/mas… #infosec #blueteam

Eine kriminelle Organisation hinter mehr als 75.000 Fake-Shops, >1M Bestellungen & >$50M Schaden. Einblick in ihr ausgeklügeltes System & wie sie Käufer täuschen. #38C3: "Fake-Shops von der Stange: BogusBazaar" mit Kai Biermann und kantorkel. media.ccc.de/v/38c3-fake-sh… #infosec

A great read on the exploitation of VMware vulnerabilities - from both attacker and defender perspectives - plus practical recommendations to strengthen your security posture. Breaking the Virtual Barrier: From Web-Shell to Ransomware sygnia.co/threat-reports… #infosec #blueteam

How well do you protect your privacy? The Privacy Checkup helps you assess your online surveillance defenses and take steps to protect your data. privacy-checkup.info (English, Deutsch, Español) #privacy #infosec

ArgFuscator is an open-source web app that generates obfuscated command lines for common system tools. Great for testing your defenses against real-world attack techniques. argfuscator.net #infosec #pentest #redteam #blueteam

State-of-the-art phishing: MFA bypass by Jaeson Schultz Cisco Talos Intelligence Group blog.talosintelligence.com/state-of-the-a… #infosec #blueteam

Ransomware Tool Matrix by Will: This repository lists tools used by ransomware gangs. Defenders can detect and block these commonly reused tools to stop intrusions. github.com/BushidoUK/Rans… #infosec #blueteam

This is so much! 🔥🔥😎 Found two new Potato triggers just today. Not only Potato but can also be used for LPE as remote auth is done which could be relayed to LDAP without Signing enabled. Or relayed to ADCS for a certificate. github.com/warpnet/MS-RPC…

Prowler by @ProwlerCloud is an open-source security tool that helps assess and enforce security best practices across AWS, Azure, Google Cloud and Kubernetes. github.com/prowler-cloud/… #infosec #BlueTeam

If you have Active Directory Certificate Services (ADCS) in your environment, run Locksmith now! In Active Directory Security Assessments, we have found critical security issues in *most* ADCS configurations. The great thing about Locksmith is that it doesn't just highlight the

Harden Windows Security by HotCakeX ✡︎ סגול is an open source PowerShell module (with GUI/CLI/Unattended mode) that documents, automates and hardens Windows security settings based on supported Microsoft mechanisms github.com/HotCakeX/Harde… #infosec #blueteam

"HELP! MY ACCOUNT GOT HACKED!" - Business Email Compromise (BEC) Part 1 truesec.com/hub/blog/help-… "The Anatomy of a Business Email Compromise Attack" - Business Email Compromise (BEC) Part 2 truesec.com/hub/blog/the-a… #infosec #blueteam