#GWS is a vital source of events for every SOC.
Check out this GWS audit logs collector, developed by Alexander Bolshakov
github.com/spacepatcher/g…

Please, don't visit this workshop if you don't want your brain melted⚠️

Dear MITRE Engenuity,
OS X market share for desktop systems is 14.99% and Linux is only 2.45%.
Why we have seen Linux in MITRE evaluations and never seen OS X?🤔

So different EDR vendors.
Vendor A: 'We don't provide raw events because our IOAs detect everything'🤔
Vendor B: 'Yes, we didn't detect your attack simulations, but you can write your own rules using our raw telemetry to detect them'👌

Ukraine needs support! SEKTOR7 has already donated to Polish Red Cross, but there's something we can do more.

Thus we give out a 50% discount on all our courses and donate all the income to the Polish Red Cross

Please share/retweet

#StandWithUkraine 🌻

institute.sektor7.net/?coupon=DONATE…

Considering current situation when my country is running down I see no longer future in Russia for me and my family. I open for any job offers relevant to my LinkedIn profile. Pease DM me, for detailed CV.
#NoToWar #НетВойне

The Kremlin is hiding the reality of Russia's attack on Ukraine from its own people, even cracking down on news outlets that call it a “war.” But the truth is that President Vladimir Putin ushered in a crisis for his country, its economy and its identity. nyti.ms/3hj9mVR

Люди со всего мира подписывают это открытое письмо против войны. Добавьте свой голос и поддержите народ Украины #Ukraine !
#NoWar #StandWithUkraine fb.avaaz.org/campaign/ru/st…

Russian tennis player Andrey Rublev writes 'No War Please' on the camera after his win in Dubai today
#Ukraine #NoWarPlease

Thousands march in anti-war protests across St Petersburg after Ukraine invasion independent.co.uk/tv/news/russia…

My great-grandfather died defending Ukraine from nazis in 1941. What would he say about today's actions of Russian regime?
#NoToWar #нетвойне

Russians join anti-war protests as prominent artists and journalists reject Putin's claims cbsn.ws/3Ii990J

In #Novosibirsk , #Russia , local residents are marching in #protest against the Russian invasion of #Ukraine :

Most russian people are against this stupid war. It is a catastrophe, a disgrace and a crime against humanity. There's no excuse for that. I am ashamed of my country. #нетвойне #нетПутину #NoWar

Aleksei Navalny, the jailed Russian opposition politician, condemned the invasion of Ukraine at a court hearing on Thursday. nyti.ms/3sdQ76g

Some cases from our operations

securelist.com/kaspersky-mana…

Can you trust a file's digital signature? 🤔
A new #Zloader campaign abuses CVE-2013-3900 for defense evasion.

🔥 HTA content appended to a signed Microsoft DLL, without breaking trust
🔥 MSHTA used to execute the appended script
🔥 CVE-2013-3900 still unpatched by default

#MDR isn't a panacea, as well as traditional SOC. Learning real world pentest/redteam reports from our clients almost every time it is 50/50 visibility. MDR & SOC have their own blind spots for many reasons. Only combined services will give you around 100% visibility.