Ian Hellen

531 posts

Ian Hellen

@ianhellen

Principal Dev, Microsoft Threat Intelligence Center Author/maintainer of #msticpy and #msticnb Python packages for CyberSec.

Seattle, WA Entrou em Ekim 2010

212 Seguindo1.9K Seguidores

Tweet fixado

Ian Hellen@ianhellen·12 Nis

MSTICPy Pluralsight Training Delighted to announce "Threat Intelligence with MSTICPy" course released by @pluralsight. Using notebooks to investigate 3 #mitreattack techniques. pluralsight.com/courses/threat… #msticpy

English

144

Ian Hellen@ianhellen·25 Eyl

MSTICPy v2.17.0 released - new RRCF outlier detection - AWS extension for Prisma Cloud AWS - Update Defender Auth to OAuth v2 and fix bugs - Python 3.12 support More details here github.com/microsoft/msti… @msticpy

English

277

Ian Hellen retweetou

msticpy@msticpy·26 Mar

MSTICPy 2.11.0 released This minor release includes: - Better handling of large/split queries for MS Sentinel - Updated support for installing MSTICPy in a Conda environment - Updates for future pandas support github.com/microsoft/msti…

English

1.1K

Ian Hellen@ianhellen·16 Şub

@Cyb3rMonk To be fair, it's a really difficult problem. Compared with GitHub copilot a) there isn't the same huge repository of KQL queries b) the schema is variable (unlike a std language like Python, which has a more constrained set of keywords). Most KQL is about schema more than syntax

English

173

Mehmet Ergene 🔸@Cyb3rMonk·15 Şub

I keep hearing Security CoPilot's KQL capabilities are quite a failure. How is your experience?

English

4.8K

Ian Hellen retweetou

Roberto Rodriguez 🇵🇪@Cyb3rWard0g·16 Şub

🌟Happy to see the community coming together and taking some of their time from their busy schedules to share and learn something new with others ❤️ #InfosecJupyterthon @OTR_Community Join us! 🚀 🔴Day 1 Live Stream: aka.ms/JupyterthonLiv… 🎤 Agenda: infosecjupyterthon.com/2024/agenda.ht…

InfoSec Jupyterthon@jupyterthon

@Cyb3rWard0g 🌍🔍 Breaking Down Our Attendees at #Jupyterthon by industries, experience levels, locations

English

3.5K

Ian Hellen retweetou

InfoSec Jupyterthon@jupyterthon·15 Şub

❤️ See you all soon 🚀 Join us online! @OTR_Community #Infosec #Jupyterthon 📺Day 1: aka.ms/JupyterthonLiv… 📺Day 2: aka.ms/JupyterthonLiv… 👉Register: aka.ms/JupyterthonReg… 🎤 Agenda: infosecjupyterthon.com/2024/agenda.ht…

Microsoft Threat Intelligence@MsftSecIntel

We’re inviting members of the infosec community to join the fourth InfoSec Jupyterthon event to meet and engage with security practitioners on using Jupyter notebooks in their daily work: msft.it/6012iIxoi

English

1.2K

Ian Hellen retweetou

InfoSec Jupyterthon@jupyterthon·13 Şub

🚨Mark your 🗓️ Feb 15-16! #InfosecJupyterthon Online🔴 📢 Hacking Proprietary Protocols with Pandas 🌟@aboutsecurity, VP Threat Research & Intelligence @BlackBerry 👉 Register: aka.ms/JupyterthonReg…

English

2.4K

Ian Hellen retweetou

InfoSec Jupyterthon@jupyterthon·13 Şub

🚨Mark your 🗓️ Feb 15-16! #InfosecJupyterthon Online🔴 📢 Threat Hunting in Three Dimensions 🌟@iknowuhack, Security Researcher @splunk #SURGe 👉 Register: aka.ms/JupyterthonReg…

English

1.2K

Ian Hellen retweetou

InfoSec Jupyterthon@jupyterthon·13 Şub

🚨Mark your 🗓️ Feb 15-16! #InfosecJupyterthon Online🔴 📢Graphing Ransomware & Data Leak Sites Trends with Plotly 🌟@th3_protoCOL, Threat Intelligence Analyst @Sophos 👉 Register: aka.ms/JupyterthonReg…

English

1.1K

Ian Hellen@ianhellen·14 Şub

Pioneering work in at-scale use of notebooks in Infosec at Secureworks. Also friend of and contributor to @msticpy - don't miss this!

InfoSec Jupyterthon@jupyterthon

🚨Mark your 🗓️ Feb 15-16! #InfosecJupyterthon Online🔴 📢Keynote: Barn Raising: Building a Community Around Jupyter Notebooks for DFIR, SecOps, and Detection Engineering Teams 🌟@detectdotdev, Principal Security Researcher @Secureworks 👉 Register: aka.ms/JupyterthonReg…

English

364

Ian Hellen@ianhellen·12 Şub

@msticpy Note: the graphic showing in the tweet is the release page for MSTIC notebooklets. MSTICPy is at release 2.10.0 - it hasn't revered 3 years 😁

English

msticpy@msticpy·12 Şub

New versions of MSTICPy and MSTIC Notebooklets released: github.com/microsoft/msti… github.com/microsoft/msti…

English

935

Ian Hellen@ianhellen·12 Şub

Things have been a bit slow recently due to other work commitments but have a new release out today. Several things in there including some updates to Splunk, XForce and Virustotal support and fixes for users in Azure Machine Learning. github.com/microsoft/msti…

msticpy@msticpy

New versions of MSTICPy and MSTIC Notebooklets released: github.com/microsoft/msti… github.com/microsoft/msti…

English

552

Ian Hellen@ianhellen·29 Oca

The clock is counting to Jupyterthon 2024. Would love to have you there!

Microsoft Threat Intelligence@MsftSecIntel

English

252

Ian Hellen@ianhellen·17 Oca

And not least @Cyb3rWard0g! Time to register!

Roberto Rodriguez 🇵🇪@Cyb3rWard0g

🚨 Registration is open for one of my favorite conferences of the year @jupyterthon ! ❤️ Thanks to @ianhellen, @ashwinpatil, @PeteABryan, and @fr0gger_, this event is possible once again! 📢 A true community event, by the community and for the community. Looking forward to seeing you all soon! 🔥

English

365

Ian Hellen@ianhellen·16 Ara

#Infosec #Jupyterthon 2024 Back to welcome in the new year. We're looking for speakers, so get your thinking caps on and cool demos at the ready. 🎇 Also looking for input on the kinds of content that you'd like to see. 👷‍♀️➡️🔣 Check out @Cyb3rWard0g's announcement for links.

InfoSec Jupyterthon@jupyterthon

🚨 The #Infosec #Jupyterthon is back 📺! 🔥 🗓️February 2024! ❄️🔥Your opportunity to share your curiosity and inspire others🌎! @OTR_Community 🚀 Call for Notebooks (Dec 15th, 2023 - Jan 15th, 2024) forms.office.com/r/bKAyTRjjas 📢 Help us shape the event! forms.office.com/r/s8v9aQT5YU

English

450

Ian Hellen@ianhellen·16 Kas

@john_lam @msticpy thanks John!

English

John Lam@john_lam·16 Kas

@ianhellen @msticpy Congratulations on the milestone!

English

Ian Hellen@ianhellen·16 Kas

Hmm - just noticed that @msticpy blew past quarter of a million sometime in the last couple of months! (ok, I know pandas does that in a day😁 but it's big deal for us 🏆) pepy.tech/projects/mstic…

English

792

Ian Hellen@ianhellen·16 Kas

MSTICPy 2.9.0 on PyPI Also includes some great guidance and scripts for packaging msticpy for use in isolated environments. #installing-for-isolated-or-semi-isolated-environments" target="_blank" rel="nofollow noopener">msticpy.readthedocs.io/en/latest/gett… (thx Chris Cianelli!)

msticpy@msticpy

MSTICPY 2.9.0 released Includes new Threat Intel provider IPQualityScore and updated M365D to use MS Graph API for hunting queries. Fixes to startup, Synapse compat issues, Entities and more. See the release notes for a full rundown github.com/microsoft/msti…

English

424

Ian Hellen@ianhellen·28 Eki

@2xyo Not sure if some notebook environments like vscode, colab, pycharm, even use notebook pypi package

English

2*yo@2xyo·8 Eki

@ianhellen Hi, great release :) Just a question, why notebook package is not in dependencies (even not in an extra part of setup.py)?

English

Ian Hellen@ianhellen·5 Eki

Release notes here github.com/microsoft/msti…

msticpy@msticpy

MSTICPy v2.8.0 released. Stability release - with several important fixes: - MS Sentinel failure when connecting using a connection string - Using supported method for multi-cloud Azure endpoints - Using msticpy in isolated environments.

English

489

Ian Hellen@ianhellen·28 Eki

@2xyo Msticpy doesn't directly depend on the notebook package. It should need even ipython but it does use some ipython functions if available.

English

Descobrir

@msticpy @Cyb3rMonk @OTR_Community @aboutsecurity @BlackBerry @iknowuhack @splunk @th3_protoCOL