Den Iuzvyk
@duzvik
security
ID:158298949
22-06-2010 08:58:46
810 Tweets
513 Followers
710 Following
Florian Roth Ross Haleliuk Florian Roth your comment is very far from the truth my friend. I’ll drop some facts tomorrow. Maybe in some parallel reality you can state things like that, but in this timeline, on this planet, I publicly ask you to not spread misinformation about me and my team’s contribution to…
1\ #ThreatHunting for APT abuse of Exchange
APT Exchange abuse has been a common theme with techniques ranging from:
> Compiled DLL OWA backdoors
> .req webshells
> EWS / Legacy auth abuse
> Log / File deletion
TL;DR below or check out the full blog 👇👇
inversecos.com/2022/07/huntin…
✅ Exploitation of 0⃣ day at the time?
✅ Web🐚s involved?
✅ DNS MiTM? 👨🏭
It can only mean one thing.
Volexity blog:
volexity.com/blog/2022/06/1…
#threatintel #cve20221040 #apt
Stop providing #DDoS protection to Russia and Belorus. Dear Akamai Technologies Cloudflare Amazon Web Services AWS Security Imperva, a Thales company Radware as a fellow #infosec founder and CEO, as a Ukrainian, I ask you to suspend your DDoS and WAF services for all Russia and Belorus. #stopwar #StopPutinNOW
Delegate to KRBTGT service to get TGT for any users ! Thanks Clément Notin for the help 🙏
skyblue.team/posts/delegate…
New from Jonny Johnson: MSRPC to ATT&CK is an encyclopedia of comprehensive context about specific Remote Procedure Call protocols. redcanary.com/blog/msrpc-to-…