Jake Williams
@malwarejake
Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him
ID: 77346069
26-09-2009 00:02:32
101,101K Tweet
139,139K Followers
1,1K Following
Fantastic release from CISA Cyber, NSA/CSS, and many others highlighting use of living off the land techniques employed by Chinese threat actors. Your EDRs won't save you from LOLBin use, you'll usually need to write custom rules to get that coverage. media.defense.gov/2023/May/24/20…