Tech Brandon

2.8K posts

Tech Brandon

@TechBrandon

Father. Engineer. Learner. Lurker. AD, Entra/Azure & enterprise security specialist. Senior Security Consultant @trustedsec. Fellow Human Being.

Katılım Ağustos 2011

413 Takip Edilen1.2K Takipçiler

Sabitlenmiş Tweet

Tech Brandon@TechBrandon·17 Şub

I'm shaving my head again this year. Please consider donating to this great cause. Help me raise money for #childhoodcancer research with @StBaldricks. stbaldricks.org/participants/b…

English

447

Tech Brandon@TechBrandon·11h

If you haven't already checked it out, make sure to read my latest @TrustedSec blog introducing Passkey Path. A new interactive blogging approach I'm trying out. It's built like a choose-your-own-adventure guide. trustedsec.com/blog/finding-y…

English

747

Tech Brandon@TechBrandon·16h

@NathanMcNulty @UK_Daniel_Card I'm not in love with the wording but I think what I'm most concerned with is the fact that MFA is only required "when necessary". What does that even mean?

English

Nathan McNulty@NathanMcNulty·22h

If you do not have Entra P1+ licensing, please leave Security Defaults enabled - it is the best security you will get This poorly written paragraph is trying to say we are wrong to think only admins need MFA It was written in 2019 when today's common knowldge wasn't as common

rootsecdev@rootsecdev

If you are using security defaults in your Entra ID environment.. Get off of it. You should have "zero trust" in security defaults with statements like these. #require-users-to-do-multifactor-authentication-when-necessary" target="_blank" rel="nofollow noopener">learn.microsoft.com/en-us/entra/fu…

English

Tech Brandon@TechBrandon·17h

@NathanMcNulty @ericonidentity @wpninjasus Oh man, wish I could vote for multiple. 😂

English

Nathan McNulty@NathanMcNulty·1d

Alright, working on a conference talk with @ericonidentity for @wpninjasus We need help with the most important part - the title :p What do you think?

English

1.6K

Tech Brandon@TechBrandon·1d

@merill is one of the best things to happen to identity security. I'm really looking forward to his next chapter. Unfiltered Merill is going to be absolutely savage.

Merill Fernando@merill

Hey folks, some personal news. I’m leaving Microsoft. It’s been a privilege to work here, and I’m incredibly grateful for the people I’ve worked with, the customers I’ve learned from, and the support so many of you have shown me along the way. I’m now starting out on my own and chasing a dream I’ve had for a long time: building software that makes security more practical, accessible, and useful for the people doing the work every day. Why now? With all the change happening around us, I feel like new possibilities are opening up. I want to spend this next chapter building things I care deeply about, solving problems that matter, and doing work that brings me joy. I’m excited. Nervous. Grateful. My newsletters, podcast, Maester and other tools will all be part of this next chapter, and I’ll share more in the coming weeks. Thank you for being part of the journey so far. I’m looking forward to building this next chapter with your support.

English

938

Tech Brandon@TechBrandon·1d

@rootsecdev @Spoonman1091 @cantcomputer 👀

QME

rootsecdev@rootsecdev·2d

@Spoonman1091 @cantcomputer 👀

QME

Martin@cantcomputer·2d

👀

Justin Elze@HackingLZ

👀

ART

772

Tech Brandon retweetledi

rootsecdev@rootsecdev·1d

English

21.6K

Tech Brandon@TechBrandon·1d

@nyxgeek Aww. Aren't you sweet. 🤗

English

nyxgeek@nyxgeek·1d

I always enjoy reading blogs from @TechBrandon . If you’re not following him yet, add him.

TrustedSec@TrustedSec

Ready to ditch passwords for good, but not sure where to start? In our new blog, @techBrandon introduces #Passkey Path, choose-your-own-adventure guide to transitioning from passwords to passkeys, built for every role in your organization. Read it now! hubs.la/Q04gyKy50

English

735

Tech Brandon@TechBrandon·1d

Wrote up a quick little introduction to Passkeys. It's no longer IF you'll migrate, it's WHEN.

TrustedSec@TrustedSec

English

Tech Brandon@TechBrandon·1d

We've come full circle. User accounts are the new hotness again.

Nathan McNulty@NathanMcNulty

I may need an intervention... I'm pretty sure I just said "user-based service accounts are better than service principals, actually"... and in the given context, it was 100% true Service Principals have some really dumb limitations that make user accounts a better fit 🥴

English

Tech Brandon@TechBrandon·3d

If you can make Eric laugh, win a prize.

TrustedSec@TrustedSec

We are all set up and ready to go at BSides NOLA 😀 Make sure to stop by our booth to chat if you're there! #BSidesNOLA

English

Tech Brandon@TechBrandon·5d

Ever wonder what the difference is between a yubikey and a passkey stored in your password safe? Do they offer the same security benefits? Which should you use and for what purpose? Passkey Path has your answers and more. techbrandon.github.io/passkey-path/s…

English

1.7K

Tech Brandon@TechBrandon·9 May

@DebugPrivilege TBH it's been a productivity dream but I find myself getting distracted by token reset and trying to maximize time but doing independent work while it's working on another task. Because it works so quickly, I'm finding that my non AI tasks are suffering.

English

DebugPrivilege@DebugPrivilege·8 May

How has AI impacted your workflow in terms of efficiency and productivity?

English

1.4K

Tech Brandon@TechBrandon·7 May

I was going to wait until next week but apparently it's #WorldPasskeyDay so I'll celebrate by introducing Passkey Path, a choose-your-own-adventure guide flexible enough for a quick read of only passkey content relevant to you. Let me know what you think! techbrandon.github.io/passkey-path/

English

2.6K

Tech Brandon@TechBrandon·7 May

@rootsecdev Are you asking for help? Because weird is my jam....

English

rootsecdev@rootsecdev·7 May

Trying to get some ideas for a weird 20 minute talk

English

536

Tech Brandon retweetledi

Justin Bollinger@Bandrel·5 May

credit to @Coontzy1

English

279

Tech Brandon retweetledi

Hackers Teaching Hackers@hthackers·4 May

May the Schwartz be with you ⚡ 🚀 HTH Con 2026 📍 Columbus, OH 🗓️ June 3–5 🎤 Talks 🛠️ Villages 🎓 Workshops Go full ludicrous speed—don’t miss it. 🎟️ 2026.hthackers.com #HTH2026 #Infosec #Cybersecurity #Infosec #HackersTeachingHackers

English

122

Tech Brandon@TechBrandon·1 May

@shellgio_ Thanks! It's always a fun conference to attend.

English

shellgio_@shellgio_·29 Nis

@TechBrandon Your session looks really nice, wish I could attend

English

Tech Brandon@TechBrandon·28 Nis

Excited to be at HTH again this year. Blowing open holes in your CA policies.

Hackers Teaching Hackers@hthackers

No fluff. No vendor decks. Just real attack paths, real techniques, real lessons. Join the talks! HTH Con 2026 → 2026.hthackers.com #HTH2026

English

1.2K

Tech Brandon retweetledi

TrustedSec@TrustedSec·30 Nis

Sometimes you don't need to build the nest yourself. In this blog, @Coontzy1 explains how trusted Group Policy UNC paths can be turned into code execution and NTLM relay without building rogue GPO infrastructure or modifying SYSVOL. Read it now! hubs.la/Q04d-LsP0

English

5.9K

Tech Brandon retweetledi

sudox@kmcnam1·29 Nis

ZXX

286

4.8K

77.4K

Keşfet

@TrustedSec @NathanMcNulty @UK_Daniel_Card @ericonidentity @wpninjasus @merill @rootsecdev @Spoonman1091