Saide

@BHinfoSecurity @ActiveCmeasures @BHinfoSecurity @ActiveCmeasures will this be recorded?

The next free monthly one-hour training session with @ActiveCmeasures is on Threat Hunting C2: DNS TXT Record Abuse w/ Faan Rossouw! Join us for a free monthly one-hour training session on command & controls and malicious traffic with Faan Rossouw (Active Countermeasures) and learn a stealthy C2 technique that bypasses common DNS tunneling detections and how to catch it. Register: events.zoom.us/ev/Aqb16UU6sZM…

Investigated #KongTuke #ClickFix abuse of DNS TXT records delivering a PowerShell botnet agent. The script contains XOR-obfuscated code, patches AMSI, disables PS ETW, polls C2, executes via IEX, and exposes an interactive cmd.exe shell. Persistence logic exists but was disabled.

Glad to have been a part of this #ThreatIntelligence

The BlueHat India Villages are now open! Swing by between sessions and get hands-on, challenge your skills, and connect with security experts. AI in Security Village: Explore AI’s role in cybersecurity and test yourself with AI-themed CTF challenges Garage Village: Try soldering workshops and live 3D printing demos, perfect for prototyping newbies Forensics Village: Learn digital forensics techniques, take a quiz, and join the CTF MSRC Village: Hunt bugs, spot insecure code, dive into a phishing CTF, and get the scoop on bounty programs AppSec Village: Brush up on secure coding, take on quizzes, and test yourself in CTF + RTF challenges Arena: Don’t miss fireside chats on Diversity & Inclusion and the future of Quantum Computing Which village are you checking out first? #BlueHatIndia

@TecmundoDigita @PredictaLabOff @EquationCorp Is Luan USDoD? Yep he confirmed it to a statement to HackRead 2 hours ago hackread.com/usdod-hacker-s…

Push straight to prod. Testing is for the weak.

He nearly make it tbh. CVE-2024-3094 Until next time.

Was going through Malware Analysis Fundamentals on @LetsDefendIO Ironic enough? 🤔🤔

Just when I thought I dodged a bullet by not going crazy during the meta downtime, LinkedIn decides to go on a break. #LinkedInDown #LinkedIn

threat intelligence is basically stalking people for a living

Check out my article: 3CX Supply Chain Compromise - A Personal Perspective linkedin.com/pulse/3cx-supp… via @LinkedIn

@InfosecVandana It was nice to meet you!

you at #Nullcon, I would love to catch up with you.

@nullcon last weekend was a blast - got to meet some fantastic new folks and reconnect with familiar ones! 🤝 #NullconGoa2023 #Nullcon #Infosec #CyberSecurity

Souvenir from @seasides_conf #Seasides #Infosec #SeasidesGoa2023

Threat Actors when they trip the EDR

Newton's First Law of Security Engineering: There's nothing more permanent than a temporary solution...

@NoContextHumans @GetVideoBot

:)

@4n6lady @GERARDJOHANSEN @PacktPublishing Let’s hope I get one. More than that I hope I find time to read it.

⭐️GIVEAWAY!⭐️ I'm giving away 10 digital copies of Digital Forensics and Incident Response, 3rd Edition by @GERARDJOHANSEN @PacktPublishing Winners will be announced Friday, @ 12pm EST 🥳 Enter by liking, sharing, and commenting 😊