.. that I was able to help people uncover threats, prevent further damage, determine the extent of the compromise, kick out the bad guys & ruin their day Our industry has significant demand for detection engineers that support DFIR & SOC teams Learn YARA, Suricata, Sigma, Zeek!

Microsoft identified a unique destructive malware operated by an actor tracked as DEV-0586 targeting Ukrainian organizations. Observed activity, TTPs, and IOCs shared in this new MSTIC blog. We'll update the blog as our investigation unfolds. msft.it/6017ZQ8jH

#NetWalker ransomware OPSEC fail - using the same IP address to launch an attack he also logged into a Gmail account and ordered a Google Home Mini to his home address... lol

Somethin to look forward to... thenewstack.io/microsoft-brin…

Thats a really good news. #github #markdown #mermaid github.blog/2022-02-14-inc…

#Pardus Hata Yakalama ve Öneri Yarışması için başvurular açıldı!! #Pardus21’in son sürümünü incele, Öneride Bulun, Hatayı Bul, Ödülü Kap! Son gün: 15 Mayıs 2022 Detaylı bilgi için: acikhack.com #teknofest2022 #samsun #tcmeb #tübitak #gnu #gnulinux #linux #etap

PoWErSheLl dEVeloPe bE liK youtu.be/uE8IAxM_BhE

What's the first thing advanced threat groups do after the first successful login on a target system with low privileges? Correct, they use the local browser to run a Bing search for privilege escalation tools on Github.

#Shomon: #shodan Monitoring integration for #thehive. New version includes the implementation of the feedback I received and some useful twists like ability of working as both Stream or Webhook listener github.com/KaanSK/shomon TheHive Shodan

The trajectory: execute #Sigma rules on any structured data in VAST, be it realtime streaming on ingest or historical. Our latest blog post reports on our path towards Sigma support in VAST and what you can already do today. 👉 vast.io/blog/richer-ty…

New in Elastic Security 8.4: Native SOAR for the modern SOC gives users the ability to quickly disable network connectivity to infected systems while still allowing responders to investigate. See how it works: go.es.io/3AxAdXo

With the latest release of VAST v2.3, you can now enjoy automatic rebuilding of your data. Good ol' defragmentation is back! Turns out this can have massive performance benefits and makes upgrading a breeze. Plus: fine-grained partition sketch config. 👉 vast.io/blog/vast-v2.3

If you installed PyTorch-nightly between dec25-dec30, remove immediately. Details and IoCs can be found in official statement: pytorch.org/blog/compromis…

If you would like to integrate TheHive with this powerful email security solution, I already got you covered: github.com/KaanSK/hivelime Sublime Security

…what. I don’t know what to say about this one. Is this a first? It appears that the ALPHV (BlackCat) ransomware group has…filed an SEC complaint on behalf of one of their victims. Are we entering into a new era of extortion via compliance failure? I have questions…

🚀 New Project Release Alert: Go-EPSS! 🚀 ❓Are you an #infosec professional juggling vulnerabilities?🕵️‍♂️ 🔗Check out: github.com/KaanSK/go-epss #cybersec #blueteam #redteam #vulnerability #cve #cissp #ceh

How to effortlessly setup Yubikeys for SSH/GIT on WSL threatzer.com/posts/wsl-yubi…

Thanks for the share and mention @techyteachme :). Indeed, juggling 100s of vulnerabilities is a never-ending task. Hoping Go-EPSS would be of any help. github.com/KaanSK/go-epss. #DetectionEngineering #ThreatHunting #ThreatIntel #CVE #vulnerability