It was awesome to be at the @AusCERT conference this year - What an amazing event and I learned so much! See you all next year!.

RT @velocidex: At @AusCERT conference we presented "Sigma and Detection Engineering with @velocidex Velociraptor". Learn how to implement r….

RT @Stealthsploit: Looking forward to speaking on a panel at the @rapid7 Take Command Summit. Register for free below as we talk about be….

RT @velocidex: Velociraptor release 0.73 is now available for testing! Read about all the cool new features here .….

We just re-published a cool blog post, on the Velociraptor Blog, by Chris Hayes from @RelianceCyber . The post illustrates the process of setting up Velociraptor using external certificates. Original post

RT @velocidex: Great example of VQL automation!.

RT @malmoeb: The incident started with a compromised server. When we extended the hunting to the entire network, we found traces of the "Wa….

I was so excited about the new 0.72 release of Velociraptor I just could not wait to make a quick video to show you all the new features!. #velociraptor #dfir #digitalforensics. Check it out here.

RT @rapid7: Version 0.7.2 of @velocidex is now fully available for download! Learn what's new 👉 .

Only a few days left to secure your early bird for our Velociraptor training in Singapore. This is a rare opportunity to learn about Velociraptor and how to deploy it effectively, develop VQL artifacts and actively hunt for adversaries.

RT @mgreen27: #100daysofyara targeting QuasarRAT via namespace strings observed in process memory and decompiled code. #R7Labs . @velocide….

RT @mgreen27: Another #100daysofyara post - #R7Labs. Source a couple of samples:. Running @velocidex Windows.Detec….

RT @mgreen27: Thought I would make some posts for #100daysofyara. Not sure how often i'll post but good chance to test some triage workflow….

RT @velocidex: We're incredibly thankful to our wonderful community of contributors, testers and enthusiasts! Without you, Velociraptor wo….

RT @velocidex: Want a sneak peek at the upcoming Velociraptor v0.7.1?. With awesome new capabilities like built in Sigma integration and en….

RT @mgreen27: Sharing out my workshop from DEATHcon. Fun to showcase some of the similar workflows I do day to day….

RT @mgreen27: Pushed out a Velociraptor artifact to scope some of the items in the SysAid post exploitation activity. .

RT @bmcder02: If you missed VeloCon23, all talks are available on YouTube and the website. #dfir #cybersecurity #….

RT @therealwlambert: While there are many great articles that discuss logs to be sent to a SIEM, many don't mention filtering on the endpoi….

RT @velocidex: If you like us here, you'll LOVE us on Discord. Come join the smartest and most lively #DFIR community on the planet. htt….