Everett Cooley

@SchizoDuckie @UK_Daniel_Card It does.

@UK_Daniel_Card Is there anything that Rami touches that DOESNT turn into freaking gold?

OMG. THIS LOOKS FUCKNG COOL!!! youtube.com/watch?v=DCWcK4…

@securestep9 Typo in your CVE number. should end in 28987

#Solarwinds are back in the CyberSecurity headlines today with their world-famous 'Solarwinds123' password (Google it). Yet another hardcoded credential in Solarwinds product prompts CISA to add CVE-2024-2898 to Known Exploited Vulnerabilities (KEV): 👇 computing.co.uk/news/2024/secu…

For some reason Dell servers blast all the fans at 100% if you install something in a PCIe slot and the only way to turn it down is to issue a command via ipmi. What the fuck?

@SwiftOnSecurity No cups, printers are evil.

Did somebody say cups?

@DJSnM It looks custom, from the side views.

Was looking for examples of timers on the space shuttle before the 'TimeCheck' design took over and the only thing that looks the part is this. There's no good photos and I can't see any branding, can't even tell if it's a timer. Anyone recognize this?

@TC_Johnson Woah, congrats!!!

@SwiftOnSecurity Ground Control to @Cmdr_Hadfield

Ground Control to Major Tom (My name is not Major Tom it's from an old song)

@UK_Daniel_Card @SwiftOnSecurity This

@SwiftOnSecurity Start…. I thought we were all members already 😂

I should start a cult

@MalwareJake @signalapp xkcd.com/327/

Um, @signalapp, you okay?

@FrankMcG Source for this? Last I knew there wasn't a price per Service Principal.

Conditional Access for Azure Service Principals costs $36/yr for each identity? This is completely free on AWS.

@MalwareJake The void screams back.

Scream into the void.

@happygeek @Forbes Typo, "blade screen of death" (sorry!)

By me @Forbes: Just when you thought it was safe to go back in the Windows water. CVE-2024-6768 explained. #infosec forbes.com/sites/daveywin…

@awakecoding (New-Object -COM Shell.Application).WindowsSecurity()

Is there a trick to send ctrl+alt+delete to a *nested* RDP session? ctrl+alt+end is the shortcut in mstsc, but it won't work on mstsc inside the remote session

@merill Very interested, you're always providing useful tools!

Something new I'm hacking together. Can't wait to share it... Graph PowerShell → Duck DB → Awesome sauce All running locally on your desktop 😍 Cost: $0

@rootsecdev Funny that you think they will ever stop.

Dear Microsoft, Quit messing with the AzureActivity logging tables. You are going to cause one of your customers to get hacked. Sincerely me..... So tldr; I've updated the detection for subscription privilege escalation in Azure. This detection also works if a compromised managed identity assigns rights to a compromised user id. I've posted the KQL query in my github. I'm going back to red teaming your cloud now. github.com/rootsecdev/Mic…

Farmington, NY, courtesy Ron and Sally Maxson

@LitMoose Covid goatsies? I see nothing wrong here 🤣

@UK_Daniel_Card Thanks, way easier.

this might catch it..... EmailEvents | where TimeGenerated > ago(180d) | where SenderFromAddress == "mbsupport@microsoft.com" | sort by TimeGenerated desc

@mckjerral @scottgu @AzureDevOps Typo or invisible character in the yaml reference to the existing build agent?

@JenMsft CTRL + F4

How do you close your browser tabs? 👀