Carrie Roberts
@OrOneEqualsOne
Mechanical Engineer turned Developer turned Pentester turned Red Teamer turned Blue-ish Purple. Instructor for Antisyphon Training. GIAC GSE Certification.
ID:2838097960
http://github.com/clr2of8 20-10-2014 13:33:24
1,4K Tweets
4,7K Followers
423 Following
Carrie Roberts is teaching another run of her Pay-What-You-Can class, 'MITRE ATT&CK Framework and Tools,' March 5, 12-4 p.m. ET! Details and registration here: antisyphontraining.com/event/mitre-at…
Another Anti-Dote Rx is ready for pickup --- Search PowerShell History and Repeat Commands with Ctrl+R and Ctrl+S | Carrie Roberts
youtube.com/watch?utm_camp…
Be sure to check out Carrie's class, 'PowerShell for InfoSec: What You Need to Know!' → antisyphontraining.com/on-demand-cour…
As always, The DFIR Report brings receipts. Great thread on an unusually well-documented script full of capabilities.
🛠️ Dive into our latest #LOLDrivers article where we unveil the meticulous process of adding a bulk of drivers, inspired by the excellent research from Takahiro Haruyama 🧵 blogs.vmware.com/security/2023/…
Big shoutout to: Takahiro Haruyama, Florian Roth, Nasreddine Bencherchali, and Jose Enrique Hernandez!
🔗 And…
Carrie Roberts How well, overall, would you say virtualization works on the M chips at this point?
Hands down my favorite conference of the year.
As Matthew Toussain said, it's more hugs than handshakes here.
Atomic Spotlight: 'Office Test' Registry Key for Persistence #AtomicSpotlight #AtomicRedTeam Red Canary Antisyphon Training youtube.com/live/zWGrdC5G4…
Atomic Spotlight: Persistent Code Execution with Office Addins #AtomicSpotlight #AtomicRedTeam Red Canary Antisyphon Training youtube.com/live/8_QK287pf…
Today's Anti-Dote Rx: PowerShell: Where Do Those Magic Variables Come From? with Carrie Roberts ! youtube.com/watch?utm_camp…
Be sure to check out Carrie's On-Demand class, 'PowerShell for InfoSec: What You Need to Know!': antisyphontraining.com/on-demand-cour…
Atomic Spotlight: Malware Blocking Execution with 'DisallowRun' Registry Key #AtomicSpotlight #AtomicRedTeam Red Canary Antisyphon Training youtube.com/live/h0aa3QT85…
Atomic Spotlight: LSA Protection, Good ol' Mimikatz, and Wdigest #AtomicSpotlight #AtomicRedTeam Red Canary Antisyphon Training youtube.com/live/QJC2zBi29…
Atomic Spotlight: Execute PowerShell Code From DNS Text Records #AtomicSpotlight #AtomicRedTeam Red Canary Antisyphon Training youtube.com/live/-af9BqH4t…