DatBoyHood
@datboyhood.bsky.social
Reposted by DatBoyHood
New Active Directory Pentesting Tool For KeyCredentialLink Management
New Active Directory Pentesting Tool For KeyCredentialLink Management
cybersecuritynews.com
February 21, 2025 at 3:29 AM
New Active Directory Pentesting Tool For KeyCredentialLink Management
Reposted by DatBoyHood
Setting up Malware Analysis Lab — Part 1
Setting up Malware Analysis Lab — Part 1
Hello, my digital adventurers! I hope you’re doing well. I’m starting a new series “Malware Analysis Series”, and in the first part, we’re…
infosecwriteups.com
February 21, 2025 at 5:48 AM
Setting up Malware Analysis Lab — Part 1
Reposted by DatBoyHood
New Attack Technique Uncovered Abusing Kerberos Delegation in Active Directory Networks
New Attack Technique Uncovered Abusing Kerberos Delegation in Active Directory Networks
cybersecuritynews.com
February 7, 2025 at 12:32 PM
New Attack Technique Uncovered Abusing Kerberos Delegation in Active Directory Networks
Reposted by DatBoyHood
Active Directory Advanced Threat Hunting: This repo is all about advanced hunting - knowledge is power!
@Microsoft @github @MITREattack @msftsecurity @microsoft365 #Microsoft #ActiveDirectory #MITREATT&CK #Eventlogs #Windows #mvpbuzz #coolstuff #communityrocks
👇👇👇👇
github.com/tomwechsler/...
@Microsoft @github @MITREattack @msftsecurity @microsoft365 #Microsoft #ActiveDirectory #MITREATT&CK #Eventlogs #Windows #mvpbuzz #coolstuff #communityrocks
👇👇👇👇
github.com/tomwechsler/...
GitHub - tomwechsler/Active_Directory_Advanced_Threat_Hunting: This repo is about Active Directory Advanced Threat Hunting
This repo is about Active Directory Advanced Threat Hunting - tomwechsler/Active_Directory_Advanced_Threat_Hunting
github.com
February 4, 2025 at 4:48 PM
Active Directory Advanced Threat Hunting: This repo is all about advanced hunting - knowledge is power!
@Microsoft @github @MITREattack @msftsecurity @microsoft365 #Microsoft #ActiveDirectory #MITREATT&CK #Eventlogs #Windows #mvpbuzz #coolstuff #communityrocks
👇👇👇👇
github.com/tomwechsler/...
@Microsoft @github @MITREattack @msftsecurity @microsoft365 #Microsoft #ActiveDirectory #MITREATT&CK #Eventlogs #Windows #mvpbuzz #coolstuff #communityrocks
👇👇👇👇
github.com/tomwechsler/...
Reposted by DatBoyHood
TeamViewer Windows App Let Attackers Escalate Privileges to System User
TeamViewer Windows App Let Attackers Escalate Privileges to System User
cybersecuritynews.com
January 30, 2025 at 8:33 AM
TeamViewer Windows App Let Attackers Escalate Privileges to System User
Reposted by DatBoyHood
CVE-2024-43707: Kibana Patches High Severity Vulnerability Exposing Sensitive Information securityonline.info/cve-2024-437...
CVE-2024-43707: Kibana Patches High Severity Vulnerability Exposing Sensitive Information
Take action to secure your Elastic Agent policies. Discover how the high severity vulnerability CVE-2024-43707 could compromise sensitive information in Kibana.
securityonline.info
January 24, 2025 at 1:15 PM
CVE-2024-43707: Kibana Patches High Severity Vulnerability Exposing Sensitive Information securityonline.info/cve-2024-437...
Reposted by DatBoyHood
Try using PowerShell to remove the Copilot App Packages:
Get-AppxPackage -AllUsers *Copilot* | Remove-AppxPackage -AllUsers
Get-AppxProvisionedPackage -Online | where-object {$_.PackageName –like "*Copilot*"} | Remove-AppxProvisionedPackage -online
Get-AppxPackage -AllUsers *Copilot* | Remove-AppxPackage -AllUsers
Get-AppxProvisionedPackage -Online | where-object {$_.PackageName –like "*Copilot*"} | Remove-AppxProvisionedPackage -online
January 24, 2025 at 2:57 AM
Try using PowerShell to remove the Copilot App Packages:
Get-AppxPackage -AllUsers *Copilot* | Remove-AppxPackage -AllUsers
Get-AppxProvisionedPackage -Online | where-object {$_.PackageName –like "*Copilot*"} | Remove-AppxProvisionedPackage -online
Get-AppxPackage -AllUsers *Copilot* | Remove-AppxPackage -AllUsers
Get-AppxProvisionedPackage -Online | where-object {$_.PackageName –like "*Copilot*"} | Remove-AppxProvisionedPackage -online
Learn how to fine tune SPL queries it's boring but it's fundamental. Any resource helping this painful process would be appreciated.
January 22, 2025 at 7:18 AM
Learn how to fine tune SPL queries it's boring but it's fundamental. Any resource helping this painful process would be appreciated.
Reposted by DatBoyHood
Brave Browser Vulnerability Let Malicious Website Mimic as Legitimate One
Brave Browser Vulnerability Let Malicious Website Mimic as Legitimate One
cybersecuritynews.com
January 22, 2025 at 5:03 AM
Brave Browser Vulnerability Let Malicious Website Mimic as Legitimate One
Nice initiative, can't wait to see its development
MITRE Launches D3FEND 1.0 to Standardize Cybersecurity Techniques for Countering Threats
MITRE has officially released D3FEND™ 1.0, a groundbreaking cybersecurity ontology designed to standardize the vocabulary and techniques used to counter malicious cyber threats.
cybersecuritynews.com
January 20, 2025 at 6:45 AM
Nice initiative, can't wait to see its development
SPL useful queries for Splunk: 0xcybery.github.io/blog/Splunk+...
Splunk Use Cases
More than 80 Use Cases for Splunk.
0xcybery.github.io
January 13, 2025 at 6:03 AM
SPL useful queries for Splunk: 0xcybery.github.io/blog/Splunk+...
Reposted by DatBoyHood
Check out the latest addition to awesome-detection-engineering: AttackRuleMap
AttackRuleMap is a clean and easy to use table of MITRE ATT&CK techniques and any associated Sigma or Splunk rules. Thanks krdmnbrk for the add!
attackrulemap.com
AttackRuleMap is a clean and easy to use table of MITRE ATT&CK techniques and any associated Sigma or Splunk rules. Thanks krdmnbrk for the add!
attackrulemap.com
ARM - AttackRuleMap
Mapping of open-source detection rules and atomic tests.
attackrulemap.com
January 4, 2025 at 4:00 PM
Check out the latest addition to awesome-detection-engineering: AttackRuleMap
AttackRuleMap is a clean and easy to use table of MITRE ATT&CK techniques and any associated Sigma or Splunk rules. Thanks krdmnbrk for the add!
attackrulemap.com
AttackRuleMap is a clean and easy to use table of MITRE ATT&CK techniques and any associated Sigma or Splunk rules. Thanks krdmnbrk for the add!
attackrulemap.com
Reposted by DatBoyHood
Sharphound detection
ipurple.team/2024/07/15/s...
ipurple.team/2024/07/15/s...
SharpHound Detection
BloodHound is an attack path management solution which can discover hidden relationships in Active Directory by performing data analysis to identify paths in the domain that will lead to lateral mo…
ipurple.team
November 26, 2024 at 11:22 PM
Sharphound detection
ipurple.team/2024/07/15/s...
ipurple.team/2024/07/15/s...
Reposted by DatBoyHood
Well, after a fair bit of testing, I’m cautiously optimistic that the new Ubuntu-based SOF-ELK build is nearing public beta. Stay tuned for the next generation of this free SIEM-like investigative platform for Security Operations and Forensics use cases!
#dfir #forensics #elastic
#dfir #forensics #elastic
November 25, 2024 at 5:45 PM
Well, after a fair bit of testing, I’m cautiously optimistic that the new Ubuntu-based SOF-ELK build is nearing public beta. Stay tuned for the next generation of this free SIEM-like investigative platform for Security Operations and Forensics use cases!
#dfir #forensics #elastic
#dfir #forensics #elastic
Reposted by DatBoyHood
This year, we worked swiftly to save legacy media sites Vice.com and MTVNews before decades worth of valuable journalism could be erased. These sites are now searchable on the Wayback Machine!
Help us in saving these resources:: https://archive.org/donate/?origin=blsky-eoy2024
Help us in saving these resources:: https://archive.org/donate/?origin=blsky-eoy2024
December 28, 2024 at 4:00 PM
This year, we worked swiftly to save legacy media sites Vice.com and MTVNews before decades worth of valuable journalism could be erased. These sites are now searchable on the Wayback Machine!
Help us in saving these resources:: https://archive.org/donate/?origin=blsky-eoy2024
Help us in saving these resources:: https://archive.org/donate/?origin=blsky-eoy2024
Reposted by DatBoyHood
New Sophisticated Attack Weaponizes Windows Defender to Bypass EDR
New Sophisticated Attack Weaponizes Windows Defender to Bypass EDR
A sophisticated attack technique that weaponizes Windows Defender Application Control (WDAC) to disable Endpoint Detection and Response (EDR) sensors on Windows machines.
cybersecuritynews.com
December 25, 2024 at 10:31 AM
New Sophisticated Attack Weaponizes Windows Defender to Bypass EDR
Reposted by DatBoyHood
It's midnight, you just finished building your home lab, and you're thinking of all the potential projects you can begin. Sounds fun, but it can also be a bit overwhelming. That's why Alan Watson (@senorwatsonsan.bsky.social) is here to guide you on what to do with your first home lab!
December 18, 2024 at 8:56 PM
It's midnight, you just finished building your home lab, and you're thinking of all the potential projects you can begin. Sounds fun, but it can also be a bit overwhelming. That's why Alan Watson (@senorwatsonsan.bsky.social) is here to guide you on what to do with your first home lab!
Reposted by DatBoyHood
Not new, but have not mentioned on Bluesky yet.
If you or someone you know aspires to be a SOC Analyst, check out my hands-on lab, "So you want to be a SOC Analyst?"
Thousands of people have been through it and the feedback has been 🔥
blog.ecapuano.com/p/so-you-wan... #infosec
If you or someone you know aspires to be a SOC Analyst, check out my hands-on lab, "So you want to be a SOC Analyst?"
Thousands of people have been through it and the feedback has been 🔥
blog.ecapuano.com/p/so-you-wan... #infosec
So you want to be a SOC Analyst? Intro
A blog series for someone wanting to get a start as a SOC Analyst
blog.ecapuano.com
December 15, 2024 at 5:15 PM
Not new, but have not mentioned on Bluesky yet.
If you or someone you know aspires to be a SOC Analyst, check out my hands-on lab, "So you want to be a SOC Analyst?"
Thousands of people have been through it and the feedback has been 🔥
blog.ecapuano.com/p/so-you-wan... #infosec
If you or someone you know aspires to be a SOC Analyst, check out my hands-on lab, "So you want to be a SOC Analyst?"
Thousands of people have been through it and the feedback has been 🔥
blog.ecapuano.com/p/so-you-wan... #infosec
Reposted by DatBoyHood
“It felt impossible to be a good actor within that system.”
She Joined Facebook to Fight Terror. Now She’s Convinced We Need to Fight Facebook.
Hannah Byrne joined Facebook to combat far-right extremism. She’s now convinced the tech giant can’t be trusted with such power.
interc.pt
December 8, 2024 at 10:31 PM
“It felt impossible to be a good actor within that system.”
Reposted by DatBoyHood
ProjectDiscovery dropped a cool new tool
github.com/projectdisco...
github.com/projectdisco...
GitHub - projectdiscovery/urlfinder: A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning. - projectdiscovery/urlfinder
github.com
December 2, 2024 at 3:14 PM
ProjectDiscovery dropped a cool new tool
github.com/projectdisco...
github.com/projectdisco...
Reposted by DatBoyHood
Clearest image ever taken of Heart Nebula, located 7500 light years away from us
December 1, 2024 at 12:52 AM
Clearest image ever taken of Heart Nebula, located 7500 light years away from us
Reposted by DatBoyHood
#cybersecurity The 7 layers of the OSI Model
November 30, 2024 at 5:41 PM
#cybersecurity The 7 layers of the OSI Model