strandjs - strandjs@bsky.social(@strandjs) 's Twitter Profileg
strandjs - [email protected]

@strandjs

I will light the way by the bridges I burn.
Retired Senior SANS Instructor
IANS Faculty
Black Hills Information Security
Active Countermeasures

ID:15727079

linkhttp://www.blackhillsinfosec.com calendar_today04-08-2008 20:07:47

13,9K Tweets

45,2K Followers

2,4K Following

Follow People
Martin(@cantcomputer) 's Twitter Profile Photo
Martin
@cantcomputer

3 weeks ago

Solid Monday advice

Solid Monday advice
account_circle
Kevin Johnson @secureideas@infosec.exchange(@secureideas) 's Twitter Profile Photo
Kevin Johnson @[email protected]
@secureideas

3 weeks ago

Building a new web app? Check out our blog series on the top 5 security considerations to keep your app safe from cyber threats.

Read more: hubs.la/Q02tY8T80

Building a new web app? Check out our blog series on the top 5 security considerations to keep your app safe from cyber threats. Read more: hubs.la/Q02tY8T80 #webapp #ProfessionallyEvil #SecureIdeas #blogseries
account_circle
Graham Helton(@GrahamHelton3) 's Twitter Profile Photo
Graham Helton
@GrahamHelton3

3 weeks ago

Just pushed an update to dredge to fix some bugs:

github.com/grahamhelton/d…

Somewhat related... Does anyone know of a wordlist of common terms that might prefix a credentials? IE: a wordlist that contains things like:
- password=
- key=
- token=

etc

Just pushed an update to dredge to fix some bugs: github.com/grahamhelton/d… Somewhat related... Does anyone know of a wordlist of common terms that might prefix a credentials? IE: a wordlist that contains things like: - password= - key= - token= etc
account_circle
strandjs - strandjs@bsky.social(@strandjs) 's Twitter Profile Photo
strandjs - [email protected]
@strandjs

4 weeks ago

Next question.

“How many of you all have Android phones?”

account_circle
Mick Douglas 🇺🇦🌻(@bettersafetynet) 's Twitter Profile Photo
Mick Douglas 🇺🇦🌻
@bettersafetynet

4 weeks ago

This is one of the better uses for LLM by a soc

Gpt isn't going to help (much) with log analysis.

account_circle
cje(@caseyjohnellis) 's Twitter Profile Photo
cje
@caseyjohnellis

4 weeks ago

7-Year-Old 0-Day in Microsoft Office Exploited to Drop Cobalt Strike buff.ly/3UBSJsX

account_circle
Black Hills Information Security(@BHinfoSecurity) 's Twitter Profile Photo
Black Hills Information Security
@BHinfoSecurity

4 weeks ago

7 Days... 72 backers till goal!

account_circle
Moxie Marlinspike(@moxie) 's Twitter Profile Photo
Moxie Marlinspike
@moxie

4 weeks ago

I made this last weekend to experiment w/ building an app end to end on LLMs: vibecheck.market

It's like Wirecutter, but uses an LLM to recommend product choices based on reddit conversations and reviews, so you don't have to spend 20-30min reading reddit

My experience:…

account_circle
Gerald Auger, Ph.D.(@Gerald_Auger) 's Twitter Profile Photo
Gerald Auger, Ph.D.
@Gerald_Auger

4 weeks ago

On location with my friend Mick Douglas 🇺🇦🌻

On location with my friend @bettersafetynet
account_circle
Antisyphon Training(@Antisy_Training) 's Twitter Profile Photo
Antisyphon Training
@Antisy_Training

4 weeks ago

'Microsoft Teams, an essential tool for corporate communication, contains features and configurations that are susceptible to abuse...'
Learn more: blackhillsinfosec.com/wishing-webhoo…

Wishing: Webhook Phishing in Teams
by: Matthew Eidelberg
Published: 3/14/2024

account_circle
strandjs - strandjs@bsky.social(@strandjs) 's Twitter Profile Photo
strandjs - [email protected]
@strandjs

4 weeks ago

Don’t say this enough.

But thanks!

account_circle
Tim Medin 🇺🇦🌻(@TimMedin) 's Twitter Profile Photo
Tim Medin 🇺🇦🌻
@TimMedin

4 weeks ago

Physical assessments are just adult hide and seek

account_circle
Mike Felch (Stay Ready)(@ustayready) 's Twitter Profile Photo
Mike Felch (Stay Ready)
@ustayready

2 years ago

Dropping a new initial access technique via RDP that I dubbed 'Rogue RDP'. Use malicious .RDP files to bypass email/servers/security gateways and then run code to binary plant/exfil from your own RDP server, blinding EDR. Bonus: Target runs HyperV? RCE! blackhillsinfosec.com/rogue-rdp-revi…

account_circle
Beau Bullock(@dafthack) 's Twitter Profile Photo
Beau Bullock
@dafthack

4 weeks ago

Just released a song to help get you hyped for hacking the planet today. Hope you enjoy it! 🤘

account_circle
Wild West Hackin' Fest(@WWHackinFest) 's Twitter Profile Photo
Wild West Hackin' Fest
@WWHackinFest

4 weeks ago

Check out Beau Bullock and Steve Borosh 's talk, 'GraphRunner: A Post-Exploitation Toolset for M365,' from WWHF - Deadwood 2023!

Grab your tickets for WWHF - Deadwood 2024! --> wildwesthackinfest.com/conference/reg…

youtube.com/watch?v=IDZzqg…

account_circle
Black Hills Information Security(@BHinfoSecurity) 's Twitter Profile Photo
Black Hills Information Security
@BHinfoSecurity

4 weeks ago

THIS. IS. AWESOME!

Get decks of Backdoors & Breaches, including the Consultants in the Expansion Deck at -- spearphish-general-store.myshopify.com/collections/ba…

account_circle
Black Hills Information Security(@BHinfoSecurity) 's Twitter Profile Photo
Black Hills Information Security
@BHinfoSecurity

4 weeks ago

**NEW** BHIS | Blog
Do you want to learn to set up your own Active Directory lab?

Deploy an Active Directory Lab Within Minutes
by: Alyssa Snow
Published: 4/25/2024
Learn more: blackhillsinfosec.com/deploy-an-acti…

account_circle
Black Hills Information Security(@BHinfoSecurity) 's Twitter Profile Photo
Black Hills Information Security
@BHinfoSecurity

4 weeks ago

Link fixed -- blackhillsinfosec.zoom.us/ze/hub/stadium

account_circle
DirectoryRanger(@DirectoryRanger) 's Twitter Profile Photo
DirectoryRanger
@DirectoryRanger

4 weeks ago

Rogue RDP – Revisiting Initial Access Methods, by Mike Felch (Stay Ready)
blackhillsinfosec.com/rogue-rdp-revi…

account_circle
strandjs - strandjs@bsky.social(@strandjs) 's Twitter Profile Photo
strandjs - [email protected]
@strandjs

4 weeks ago

What!??! This looks awesome

account_circle