Finally got a https://t.co/CHLAWQwPMC invite code (thanks!) you can find me at https://t.co/XyOYLly5QV I was warned "it's mostly shitposting" and tbh I think that's a good reason to join

Two new OpenRelik workers released today: 1. Hayabusa from @SecurityYamato - Analyze your Windows Event Logs. 2. Timesketch exporter - export your timelines seamlessly. #DFIR #OpenRelik 🧵👇See this thread for screencasts:

[also, I hear they host a great movie night with carefully curated films - better get ready @Ministraitor / @adulau / @_saadk]

I'll be speaking about #DFIQ and how to organize all your forensics intelligence at @hack_lu next month! Come join us, it's a cozy conference run by a great team :) (and jeez, what an honor to be a part of this lineup! 🙏🏻)

🚀Introducing OpenRelik: Open-source platform for digital forensic investigations. Modular workflows, collaboration, central artifact repository and easily extendable to support new tools in a clean, easy to use interface. https://t.co/fnkTwtsXDd

Pour one out for all the operators out there using memory-only implants on their target's networks.

Even genius engineering teams sending rockets that cost billions to space are defeated by character encoding.

We start day 1 with a dfir & threat Intel session. First, @tomchop_ and @Sebdraven are introducing Yeti. #pts24 https://t.co/pY16CuW9FR

Listening to @tomchop_ and @Sebdraven at @passthesaltcon talking about: #Yeti - towards a #Forensics Intelligence Platform https://t.co/fCd1Ioo76M #pts24

https://t.co/jFRiEUWLIu has now got a new logo! (and stickers to go with, which got here just in time to be handed out at @passthesaltcon). Thanks a lot to @N1aKan for the great artwork 🫶🏼

Excited to be chatting a bout attacker simulation exercies at @a41con this afternoon! 🕵️ It's the last talk of the last day, in the underground track. So grab a beer (or any drink), come get cozy and chat about how much blue teams and red teams get to have fun together.

Very glad to be talking about forensics intelligence and our progress with Yeti, Timesketch, and DFIQ at @passthesaltcon !! Looking forward to catch up with everyone at this awesome event! 🤩

Let's dive into our https://t.co/rvRGogVJHI Starting with the #DFIR & TI session: 🚀@xme will speak about automation in hunting ⚒ #Yeti evolution by @tomchop & @Sebdraven 🤔@adulau will bring back RSS for Security + 2 #workshops to 🙌 Book your 🆓🪑 https://t.co/bSzRhVp7AU

📢 #Yeti is now part of the ODFIR infrastructure automation project! It's never been easier to connect it to a @TimesketchProj instance and enrich all your sketches with juicy forensics intelligence ✨ More details here 👇🏻 https://t.co/mMf5LdG0i5 #DFIR #CTI #Timesketch

🎉 Announcing DFIR Labs! 🎉 Introducing our DFIR Labs based on real intrusions from our public reports and private threat briefs! Whether you're starting out or looking to deepen your skills, our labs can help. 1/2

This would never have happened if the backdoor had been written in rust... 🦀 Threat actors take note.

software engineers will notice half a second of latency in something that should be ~instant and will move heaven and earth to fix it, or at least to understand why; and this seems to have blown an operation that had started to install a backdoor on every Debian/Ubuntu SSH server

🚀 Next up on Rhacklette’s calendar: a workshop on Cloud Forensics from @tomchop_ and @cyjkppr 📍 The training will be split into 2 sessions. 1: 24th April 18:30 to 20:30. 2: 26th April 18:30-20:30 This activity is for members only. More info rhacklette@defcon-switzerland.org

Super excited about this opportunity 🤩

🚀Our next event will be: Public Speaking, the stuff nobody ever teaches you. 📍The 25th March 18:30-19:30, Zurich, location TBA. This activity is for members only. If you want to join our community you must identify as FINTA. Send an email to rhacklette@defcon-switzerland.org

🚨 @udgover sharing "Yeti" ! An open-source threat intelligence platform storing data in a graph database. 🔴 Happening now: https://t.co/ZkJhUWI9Xz