nugs, chillin and grindage

Attackers always ask whoami but they never ask whyami

YARA-X v0.7.0 is out! github.com/VirusTotal/yar…

Today’s the day! Very proud of the immense work Huntress analysts Jai Minton and Craig put into this lengthy walk through of an intrusion with strong overlap of OceanLotus TTPs. Thank you to Greg Linares (Laughing Mantis) for supporting this investigation as well!

Many big orgs do x-func "virtual" teams, but imo a killer squad requires not just delegates from other teams, but folks w/ depth in a specific discipline. My ideal squad has a SOC analyst, a reverser, a toolmaker, a strategic thinker, a storyteller, a forensicator, a tracker etc

Garden plants left alone tend to overgrow themselves, become brittle, imbalanced, blossom less, yield less. Many do not truly thrive without routine care and aggressive pruning. I think of this often about detection rules, workflows, tools, and "the way we do things."

Groupings, groups, group, grou gro gr gr g g g g

We The Vertex Project have decided to make the Synapse Bootcamp training materials freely available for anyone to learn on their own! Let us know what you think! vertex.link/training/bootc…

There are a lot of folks betting that AI dev, & analysis, will be way to hyperscale into the future. I suspect the folks that are willing to take the opposing bet, on human creativity & innovation, will win. But only through relentless meritocracy, & deliberately eschewing

I’m aware of fee-based member alliances and gov sponsored groups, but does anyone know of any cybersecurity products, services or research organizations funded entirely by private consortiums?

11th Annual Flare-On Challenge announcement cloud.google.com/blog/topics/th… #flareon11 #yara 👀

The Flare-On Challenge is back for its 11th year! 🔥 This #CTF-style challenge for current and aspiring reverse engineers features puzzles across Windows, Linux, Web3, and even YARA. Learn more and get ready to compete → bit.ly/3TwZ7AG #Flareon11