Ivan Ninichuck

"Cyber Knight Oath": The internet is for everyone, to be used without fear. We stand up to the malicious. We stop those who would ransom. We never give up against any threat. For we are the Cyber Knights.

@shehackspurple You are a solid contribution to the community. Made me strong when I felt weak. Ignore it and know you've made a difference.

I'm getting a lot of unfollows on here. If you are considering unfollowing, would you mind sharing why? I'd love to hear your feedback.

The Technique Inference Engine was a great experience and project. Really expanded our abilities using @MITREattack . Here is my journey on the project. googlecloudcommunity.com/gc/Community-B…

So I have not posted here in a long time. But going to my fifth @MITREattack conference reminded me how important everyone i follow on here has been. Despite having less time and such I want to make an effort to maintain this account again.

Trance remixes of the Oppenheimer soundtrack are my new work favorites..lol

@likethecoins @wesdrone @ImposeCost My favorite quote and perspective.

@wesdrone @ImposeCost And just because they can change X, doesn't mean they will!

Recently been in many convos where someone says “the actors will just change X to evade”. At the risk of ripping off @ImposeCost. “There is no checkmate in security, for every move there is a counter move. The point is to force the attackers to move and make those moves cost.”

It's back to school time, and adversaries are taking advantage! If you support higher education or know someone who does, check out our blog on an email campaign targeting a university. Infrastructure pivoting suggests this could affect multiple orgs. redcanary.com/blog/email-acc…

@UK_Daniel_Card I want to game with Kermit!!

I’m a 39 year old man who plays computer games, has air rifles, Drones, hacking gear, comic book stuff, Lego, a James Bond car, a Kermit hacker sidekick🤣 people need to chill out and let people be happy! #NerdLifeRocks

@regulartacos @sherrod_im As a post sales person I always compliment teams on where they're doing great. On a leadership call I'll call out the specific employees work that impressed me. Anything we can do to help SecOps teams get the support they need. But direct comparisons that might leak info, nope.

@sherrod_im Post-sales, I'll take all the 'you all are way ahead in terms of maturity compared to our other customers' gold stars to take to Sr. Mgmt all day though.

One of the things infosec vendors don’t get is that customers don’t feel competitive with each other for best security posture. They feel defensive against threat actors. Get in the right damn corner. Think about that this week.

@Ell_o_Punk I just about got myself saying either y'all or everyone.

I have gotten to use to saying “guys” as gender neutral. I never thought I would keep encouraging my brain to say “y’all “ I’ll get it eventually.

@ali_alwashali @packetengineer @olafhartong This!

@packetengineer All options are great. When working in different environments, you may need to add or remove filters. That is why the @olafhartong sysmon-modular project is so useful. It provides a flexible way to add or remove filters.

What is your favorite pre-built Sysmon config? If you have a minute can you comment as to why you chose the one you did? #SIEM #SOC #Sysmon #DFIR #Blueteam

@jamieantisocial Completely agree. I should clarify that I learned from the constant correction of the spell check itself, not traditional methods. The markdown in language arts just frustrated me, while the spell check became a positive source of confidence and repetition.

@ipninichuck it's definitely a tradeoff, I'm all for the continuous learning but am also wary of limiting your ability/confidence to freely communicate ⚖️

idk where I'd be without spell check 🔡

We'll be offering free virtual registration to ATT&CKCon 4.0 in the coming weeks, but would you like to join us Oct 24-25 in McLean, VA? Ticket sales start this Thursday, 8/3, at 12:30pm EDT/1630 UTC and will be $495. We'll be sharing the link here and on our other social media!

So apparently I wasn't paying attention to the fact that the app icon on this app was going to change. I saw a random "new app" called X and assumed malware downloaded on my phone. I uninstalled, then went, oops.

@likethecoins @megan_roddie ok....this is the second post i've seen on this book. putting it on my next-up list.

With the heat index over 100 degrees, it's a great day to dive into @megan_roddie's new book! I love to see threat severity as part of the triage process. 🔥Threat Intelligence + Detection Engineering = ❤️! amazon.com/dp/1801076715

Fucking love seeing my frens win. My brilliant friend @megan_roddie wrote a book!! Preordered, can’t wait to crack into this puppy.

We've updated the Elastic Container Project to @elastic 8.9.0. Uses a shell script to deploy Elasticsearch, Kibana, and Fleet server. Useful for detection engineering tests, checking out malware capabilities, sandboxes, or other data analysis use cases. github.com/peasead/elasti…

This is going to be fantastic 😊

Me explaining to students they will learn the internal operations of Windows.

@Ell_o_Punk I also highly recommend Mary Shelley's Frankenstein if you never had a chance to read it before, or not in several years.

@Ell_o_Punk Being outside in the garden sounds like a fantastic way to spend time. I just tagged you with a book I'm reading on Quantum Computing in a separate post. But I'll link it here too for simplicity.

Everything on my TO Be Read list has over a month of waiting time. So, tell me your favorite book and a little on why it’s your favorite please ?