The DFIR Report
@TheDFIRReport
Real Intrusions by Real Attackers, the Truth Behind the Intrusion.
Services: https://t.co/XW613EKt2w
ID:1245886895458078722
https://thedfirreport.com/ 03-04-2020 01:33:43
1,2K Tweets
48,9K Followers
0 Following
Interesting #CobaltStrike server:
➡️d0fe709e41[.]windows-defender[.]services
➡️Fronted with Cloudflare
➡️Beacon staged/C2 on multiple IPs
➡️Browser UA -> loads the below page
➡️License:987654321
Full list available through our AllIntel service @ thedfirreport.com/services/threa…
This week I had a great mentoring session with Alessandro Alessandro Di Carlo from The DFIR Report. After learning about my career goal, challenges and skills, he sent me many practical suggestions about career path, resume and training etc. to become a SOC analyst.
🙌We’re thrilled to add public detection analytics from The DFIR Report to our free Community Edition! Users can now surface these rules right alongside #detectionengineering content from other popular sources like the sigma repository here: app.tidalcyber.com/analytics