Hello World! I decided to start this Twitter account to keep up with current cybersecurity research, analysis, and threat intelligence, as well as interact with other professionals in the field. I’ll do my best to signal-boost posts that I feel will benefit the community!

Microsoft announced today that it will integrate Sysmon natively into Windows 11 and Windows Server 2025 next year, making it unnecessary to deploy the standalone Sysinternals tools. https://t.co/aomlKYXm5Q

Apparently I’ve avoided this app to the point where it no longer is confident I’m a human… or perhaps my alter-ego is more convincing than I realized? 🤖🐶

People know me for strong opinions on offensive security, threat intel, malware devs, C2 frameworks. Now it’s time to piss off the defenders. Process Creation logs (Event ID 4688) are the only sane answer here. Not DNS query logs. Not PCAPs. Not network logs with login events

I’m still here!!! The burnout has been real, but every now and then I see a glimmer of light when somebody asks me about a real cybersecurity topic. 😌

Trying to do my obligatory semi-regular login and doom scrolling… this place still as toxic as i remember? ☠️

Microsoft Threat Intelligence Center discovered an active and successful device code phishing campaign by a threat actor we track as Storm-2372. Storm-2372’s targets include governments, NGOs, IT services and technology, defense, telecoms, health, higher education, and energy/oil

ICYMI: Trump administration axed all advisory committee members in DHS, including the people that make up the Cybersecurity and Infrastructure Security Agency's (CISA) Cyber Safety Review Board (CSRB).

We're just two weeks away from the SANS CTI Summit, one of my favorite conferences of the year! I've seen several presentation drafts, and they are 🔥. Register today to join Live Online (free!) or in-person in Alexandria, VA! ➡️ Register: https://t.co/uBkLbdD167 @sansforensics

Admittedly I’ve been quiet on here lately due to general holiday hectic household, but I always recommend and make it a point to complete this challenge every December!

#AdventOfCyber is HERE! 🚨🎅 🔗 https://t.co/N37yYGq4Gb Take on daily beginner-friendly challenges throughout December to be in with the chance of winning from our $100,000 prize draw 🎁🎄

BEN SAID I COULD DO A GIVEAWAY TOO 🥳 HackingHub Black Friday deal: https://t.co/Uf3mW11mcR $39 for lifetime access ♾️ OR $19 for a month trial ⏰ AND I can match his giveaway-- 2️⃣ WINNERS (1 each) - Full cert bundle - Lifetime access To enter: ↪️ retweet and reply w/ 🦃

📢 The Github Infosec Black Friday 2024 edtion is out!! Already some good deals here 👇 https://t.co/1QwI2QCygb

Very cool! Excited to explore this further at work!

Topic that arose while discussing Kindergarten career day: anybody have experience/resources on how to explain InfoSec to children? Would be intrigued to see any resources/talks… otherwise I may just need to make my own… 🤔

What people often overlook in #DetectionEngineering is that there’s no "one-size-fits-all" rule to detect a threat. It depends on your goals. How specific should the rule be? Are you tracking a threat actor, detecting the tool/malware, or focusing on the technique? Should it be

If your family hasn’t received a phone call from “family” saying they’ve “been in an accident and need money for bail”, they likely will in the next few years. This AI voice clone scam is so easy to make and I’ve had folks left and right telling me they’re getting these calls.

This is a great read! I’m always interested to read into detection strategies for Linux compared to Windows.

🎉GIVEAWAY⭐️ I am giving away 1 print copy and 5 e-book copies of Mastering AWS Security! 🛡️☁️ 📚Book: https://t.co/rOBKdVpqWS Enter before Tuesday, September 03, 2024 at 6PM EST by following, commenting, and RT! @PacktPublishing Author: https://t.co/3y0tADBpGw

Also, happy to say that the account’s namesake has been doing his best therapy dog impression while I recover. 😏🐶

oh my god IT HAPPENED