D Milroy
@dpmilroy.bsky.social
Corporate IT Security _____. Comments are mine and do not reflect the opinion of my employer. Stupid comments are the result of being hacked by an APT.
Reposted by D Milroy
Evergreen Park High School recently announced plans to add a bowling alley to its sports complex, possibly becoming the first high school in the state to do so.
Evergreen Park High School to add bowling alley to sports complex
Evergreen Park High School plans an eight-lane bowling alley. Its teams now practice and compete at Arena Lanes in Oak Lawn.
trib.al
November 15, 2025 at 9:31 PM
Evergreen Park High School recently announced plans to add a bowling alley to its sports complex, possibly becoming the first high school in the state to do so.
Reposted by D Milroy
BACKDOORS & BREACHES - CARD OF THE DAY
Have you experienced this?
Deck: Core Deck 2.2
Attack/Procedure Type: C2 and Exfil
Attack/Procedure: DNS as C2
Tools:
dnscat2 - github.com/iagox86/dnsc...
Learn more:
www.blackhillsinfosec.com/bypassing-cy...
Have you experienced this?
Deck: Core Deck 2.2
Attack/Procedure Type: C2 and Exfil
Attack/Procedure: DNS as C2
Tools:
dnscat2 - github.com/iagox86/dnsc...
Learn more:
www.blackhillsinfosec.com/bypassing-cy...
June 13, 2025 at 5:50 PM
BACKDOORS & BREACHES - CARD OF THE DAY
Have you experienced this?
Deck: Core Deck 2.2
Attack/Procedure Type: C2 and Exfil
Attack/Procedure: DNS as C2
Tools:
dnscat2 - github.com/iagox86/dnsc...
Learn more:
www.blackhillsinfosec.com/bypassing-cy...
Have you experienced this?
Deck: Core Deck 2.2
Attack/Procedure Type: C2 and Exfil
Attack/Procedure: DNS as C2
Tools:
dnscat2 - github.com/iagox86/dnsc...
Learn more:
www.blackhillsinfosec.com/bypassing-cy...
Reposted by D Milroy
BACKDOORS & BREACHES - CARD OF THE DAY
Have you experienced this?
Deck: Core Deck 2.2
Attack/Procedure Type: Procedure
Attack/Procedure: Server Analysis
Tools:
DeepBlueCLI - github.com/sans-blue-te...
Get Backdoors & Breaches: spearphish-general-store.myshopify.com/collections/...
Have you experienced this?
Deck: Core Deck 2.2
Attack/Procedure Type: Procedure
Attack/Procedure: Server Analysis
Tools:
DeepBlueCLI - github.com/sans-blue-te...
Get Backdoors & Breaches: spearphish-general-store.myshopify.com/collections/...
June 20, 2025 at 7:23 PM
BACKDOORS & BREACHES - CARD OF THE DAY
Have you experienced this?
Deck: Core Deck 2.2
Attack/Procedure Type: Procedure
Attack/Procedure: Server Analysis
Tools:
DeepBlueCLI - github.com/sans-blue-te...
Get Backdoors & Breaches: spearphish-general-store.myshopify.com/collections/...
Have you experienced this?
Deck: Core Deck 2.2
Attack/Procedure Type: Procedure
Attack/Procedure: Server Analysis
Tools:
DeepBlueCLI - github.com/sans-blue-te...
Get Backdoors & Breaches: spearphish-general-store.myshopify.com/collections/...
Reposted by D Milroy
BACKDOORS & BREACHES - CARD OF THE DAY
Deck: Cloud Deck
Attack/Procedure Type: Initial Compromise
Attack/Procedure: Credentials Posted Publicly in a Code Repository
Tools:
Gitleaks - github.com/gitleaks/git...
TruffleHog - github.com/trufflesecur...
Gitrob - github.com/michenriksen...
Deck: Cloud Deck
Attack/Procedure Type: Initial Compromise
Attack/Procedure: Credentials Posted Publicly in a Code Repository
Tools:
Gitleaks - github.com/gitleaks/git...
TruffleHog - github.com/trufflesecur...
Gitrob - github.com/michenriksen...
June 27, 2025 at 5:46 PM
BACKDOORS & BREACHES - CARD OF THE DAY
Deck: Cloud Deck
Attack/Procedure Type: Initial Compromise
Attack/Procedure: Credentials Posted Publicly in a Code Repository
Tools:
Gitleaks - github.com/gitleaks/git...
TruffleHog - github.com/trufflesecur...
Gitrob - github.com/michenriksen...
Deck: Cloud Deck
Attack/Procedure Type: Initial Compromise
Attack/Procedure: Credentials Posted Publicly in a Code Repository
Tools:
Gitleaks - github.com/gitleaks/git...
TruffleHog - github.com/trufflesecur...
Gitrob - github.com/michenriksen...
Reposted by D Milroy
BACKDOORS & BREACHES - CARD OF THE DAY
Have you experienced this?
Deck: Cloud Deck
Attack/Procedure Type: Initial Compromise
Attack/Procedure: Malicious OAuth Application
Tools:
O365 Attack Toolkit - github.com/mdsecactiveb...
Learn more:
threatpost.com/oauth-phishi...
Have you experienced this?
Deck: Cloud Deck
Attack/Procedure Type: Initial Compromise
Attack/Procedure: Malicious OAuth Application
Tools:
O365 Attack Toolkit - github.com/mdsecactiveb...
Learn more:
threatpost.com/oauth-phishi...
July 4, 2025 at 3:34 PM
BACKDOORS & BREACHES - CARD OF THE DAY
Have you experienced this?
Deck: Cloud Deck
Attack/Procedure Type: Initial Compromise
Attack/Procedure: Malicious OAuth Application
Tools:
O365 Attack Toolkit - github.com/mdsecactiveb...
Learn more:
threatpost.com/oauth-phishi...
Have you experienced this?
Deck: Cloud Deck
Attack/Procedure Type: Initial Compromise
Attack/Procedure: Malicious OAuth Application
Tools:
O365 Attack Toolkit - github.com/mdsecactiveb...
Learn more:
threatpost.com/oauth-phishi...
Reposted by D Milroy
CARD OF THE DAY
Deck: Core Deck 2.2
Attack/Procedure Type: Pivot and Escalate
Attack/Procedure: New Service Creation/Modification
Tools:
Impacket - github.com/SecureAuthCo...
Metasploit - www.metasploit.com
Get decks: spearphish-general-store.myshopify.com/collections/...
Deck: Core Deck 2.2
Attack/Procedure Type: Pivot and Escalate
Attack/Procedure: New Service Creation/Modification
Tools:
Impacket - github.com/SecureAuthCo...
Metasploit - www.metasploit.com
Get decks: spearphish-general-store.myshopify.com/collections/...
July 11, 2025 at 6:12 PM
CARD OF THE DAY
Deck: Core Deck 2.2
Attack/Procedure Type: Pivot and Escalate
Attack/Procedure: New Service Creation/Modification
Tools:
Impacket - github.com/SecureAuthCo...
Metasploit - www.metasploit.com
Get decks: spearphish-general-store.myshopify.com/collections/...
Deck: Core Deck 2.2
Attack/Procedure Type: Pivot and Escalate
Attack/Procedure: New Service Creation/Modification
Tools:
Impacket - github.com/SecureAuthCo...
Metasploit - www.metasploit.com
Get decks: spearphish-general-store.myshopify.com/collections/...
Reposted by D Milroy
BACKDOORS & BREACHES - CARD OF THE DAY
Have you experienced this?
Deck: Core Deck 2.2
Attack/Procedure Type: Persistence
Attack/Procedure Evil Firmware
Play for free play.backdoorsandbreaches.com
Get physical card decks spearphish-general-store.myshopify.com/collections/...
Have you experienced this?
Deck: Core Deck 2.2
Attack/Procedure Type: Persistence
Attack/Procedure Evil Firmware
Play for free play.backdoorsandbreaches.com
Get physical card decks spearphish-general-store.myshopify.com/collections/...
April 4, 2025 at 6:42 PM
BACKDOORS & BREACHES - CARD OF THE DAY
Have you experienced this?
Deck: Core Deck 2.2
Attack/Procedure Type: Persistence
Attack/Procedure Evil Firmware
Play for free play.backdoorsandbreaches.com
Get physical card decks spearphish-general-store.myshopify.com/collections/...
Have you experienced this?
Deck: Core Deck 2.2
Attack/Procedure Type: Persistence
Attack/Procedure Evil Firmware
Play for free play.backdoorsandbreaches.com
Get physical card decks spearphish-general-store.myshopify.com/collections/...
Reposted by D Milroy
1st 3 Linux IR Commands youtu.be/_VullFykaP0?...
1st 3 Windows IR Commands
youtu.be/ilhzt-Hw_sY?...
Compromised? What Do We Do Next?
youtu.be/DuIXbz30mqk?...
How to Prepare Before the Compromise
youtu.be/V-3-RGsdqpM?...
Demystifying Windows Malware Investigations
www.youtube.com/live/TsTBnAo...
1st 3 Windows IR Commands
youtu.be/ilhzt-Hw_sY?...
Compromised? What Do We Do Next?
youtu.be/DuIXbz30mqk?...
How to Prepare Before the Compromise
youtu.be/V-3-RGsdqpM?...
Demystifying Windows Malware Investigations
www.youtube.com/live/TsTBnAo...
Your First Three Linux IR Commands If You're Compromised! | John Strand | BHIS Nuggets
YouTube video by Black Hills Information Security
youtu.be
March 11, 2025 at 5:25 PM
1st 3 Linux IR Commands youtu.be/_VullFykaP0?...
1st 3 Windows IR Commands
youtu.be/ilhzt-Hw_sY?...
Compromised? What Do We Do Next?
youtu.be/DuIXbz30mqk?...
How to Prepare Before the Compromise
youtu.be/V-3-RGsdqpM?...
Demystifying Windows Malware Investigations
www.youtube.com/live/TsTBnAo...
1st 3 Windows IR Commands
youtu.be/ilhzt-Hw_sY?...
Compromised? What Do We Do Next?
youtu.be/DuIXbz30mqk?...
How to Prepare Before the Compromise
youtu.be/V-3-RGsdqpM?...
Demystifying Windows Malware Investigations
www.youtube.com/live/TsTBnAo...
Reposted by D Milroy
Microsoft shows off novel quantum chip that can scale to 'a million qubits'. So far: Eight
Microsoft shows off novel quantum chip that can scale to 'a million qubits'. So far: Eight
Not just a matter of time but a matter of Majorana fermions, too
Microsoft says it has developed a quantum-computing chip made with novel materials that is expected to enable the development of quantum computers for meaningful, real-world applications…
dlvr.it
February 19, 2025 at 8:59 PM
Microsoft shows off novel quantum chip that can scale to 'a million qubits'. So far: Eight
Reposted by D Milroy
Ozzy Osbourne and the original Black Sabbath lineup will reunite this summer for the first time in 20 years. It's expected to be Osbourne's final live show.
Ozzy Osbourne and Black Sabbath will reunite for the final time this summer
Ozzy Osbourne and the original Black Sabbath lineup will reunite this summer for the first time in 20 years. It's expected to be Osbourne's final live show.
www.npr.org
February 6, 2025 at 3:01 PM
Ozzy Osbourne and the original Black Sabbath lineup will reunite this summer for the first time in 20 years. It's expected to be Osbourne's final live show.
Reposted by D Milroy
Folks at MIT Sloan looked at multiple studies of return to office (RTO) mandates & found they are lose-lose-lose. No reward from Wall Street for “getting tough,” an actual decrease in productivity & revenue, and loss of top talent. youtu.be/4ec_yZCWOCY...
RTO Mandates: Hard Truths for Leaders
After Amazon imposed a strict return-to-office policy that takes effect in January 2025, other companies followed suit. But are RTO mandates a way to boost productivity and charm Wall Street - or just a way to lose your best performers? In this short video, Brian Elliott, who has studied RTO mandate
youtu.be
January 12, 2025 at 11:53 PM
Folks at MIT Sloan looked at multiple studies of return to office (RTO) mandates & found they are lose-lose-lose. No reward from Wall Street for “getting tough,” an actual decrease in productivity & revenue, and loss of top talent. youtu.be/4ec_yZCWOCY...
Reposted by D Milroy
I do not want to sign in with Google.
I do not consent to cookies.
I object to "Legitimate" Interests.
I do not want your newsletter.
I will not switch off my ad blocker.
I do not want notifications.
I don't care about your special offer.
I do not want to subscribe.
I do not want to use your app.
I do not consent to cookies.
I object to "Legitimate" Interests.
I do not want your newsletter.
I will not switch off my ad blocker.
I do not want notifications.
I don't care about your special offer.
I do not want to subscribe.
I do not want to use your app.
January 12, 2025 at 5:03 PM
I do not want to sign in with Google.
I do not consent to cookies.
I object to "Legitimate" Interests.
I do not want your newsletter.
I will not switch off my ad blocker.
I do not want notifications.
I don't care about your special offer.
I do not want to subscribe.
I do not want to use your app.
I do not consent to cookies.
I object to "Legitimate" Interests.
I do not want your newsletter.
I will not switch off my ad blocker.
I do not want notifications.
I don't care about your special offer.
I do not want to subscribe.
I do not want to use your app.
Reposted by D Milroy
Let's just get the myths out of the way.
1. Lost luggage is rare. (Less than 1 percent.)
2. Carousel waits are shorter than the scrum to get off the plane.
3. Even when airlines don't charge (like Southwest) people are asshats about carry-ons
American travelers are spoiled children.
1. Lost luggage is rare. (Less than 1 percent.)
2. Carousel waits are shorter than the scrum to get off the plane.
3. Even when airlines don't charge (like Southwest) people are asshats about carry-ons
American travelers are spoiled children.
December 27, 2024 at 6:13 AM
Let's just get the myths out of the way.
1. Lost luggage is rare. (Less than 1 percent.)
2. Carousel waits are shorter than the scrum to get off the plane.
3. Even when airlines don't charge (like Southwest) people are asshats about carry-ons
American travelers are spoiled children.
1. Lost luggage is rare. (Less than 1 percent.)
2. Carousel waits are shorter than the scrum to get off the plane.
3. Even when airlines don't charge (like Southwest) people are asshats about carry-ons
American travelers are spoiled children.
Reposted by D Milroy
CISA Issues Binding Operational Directive for Improved Cloud Security
CISA Issues Binding Operational Directive for Improved Cloud Security
CISA’s Binding Operational Directive 25-01 requires federal agencies to align cloud environments with SCuBA secure configuration baselines.
www.securityweek.com
December 22, 2024 at 1:12 PM
CISA Issues Binding Operational Directive for Improved Cloud Security
Reposted by D Milroy
Russian hackers use RDP proxies to steal data in MiTM attacks
Russian hackers use RDP proxies to steal data in MiTM attacks
The Russian hacking group tracked as APT29 (aka "Midnight Blizzard") is using a network of 193 remote desktop protocol proxy servers to perform man-in-the-middle (MiTM) attacks to steal data and…
www.bleepingcomputer.com
December 21, 2024 at 6:42 PM
Russian hackers use RDP proxies to steal data in MiTM attacks
Reposted by D Milroy
Major Announcement Regarding the HOPE Conference:
Effective immediately, HOPE will happen EVERY summer, not every two years. HOPE_16 will be August 15-17, 2025!
www.2600.com/content/majo...
Effective immediately, HOPE will happen EVERY summer, not every two years. HOPE_16 will be August 15-17, 2025!
www.2600.com/content/majo...
A MAJOR ANNOUNCEMENT CONCERNING THE HOPE CONFERENCE | 2600
www.2600.com
December 18, 2024 at 8:01 PM
Major Announcement Regarding the HOPE Conference:
Effective immediately, HOPE will happen EVERY summer, not every two years. HOPE_16 will be August 15-17, 2025!
www.2600.com/content/majo...
Effective immediately, HOPE will happen EVERY summer, not every two years. HOPE_16 will be August 15-17, 2025!
www.2600.com/content/majo...
Reposted by D Milroy
Blue teamers — sometimes we can lose sight of Active Directory. I mean, it just works in the background, right? Active Directory is crucial to Windows networks & a perfect target for bad actors. Dive into this article to learn common active directory pitfalls 7 how to avoid getting your day ruined.
December 17, 2024 at 9:50 PM
Blue teamers — sometimes we can lose sight of Active Directory. I mean, it just works in the background, right? Active Directory is crucial to Windows networks & a perfect target for bad actors. Dive into this article to learn common active directory pitfalls 7 how to avoid getting your day ruined.
Reposted by D Milroy
I can't spend more than a few minutes on my LinkedIn timeline before I suffer brain melt. Saw this meme recently and finally understood why...
December 17, 2024 at 9:10 PM
I can't spend more than a few minutes on my LinkedIn timeline before I suffer brain melt. Saw this meme recently and finally understood why...
Reposted by D Milroy
Breaking news: A juvenile killed four people and injured five at a Christian school in Madison, Wisconsin, Madison Police Chief Shon F. Barnes said Monday. The shooter is also dead.
Student kills 4 at Madison Christian school, police chief says
The juvenile shooter was also dead at Abundant Life Christian School on Monday, Madison Police Chief Shon F. Barnes told reporters Monday.
www.washingtonpost.com
December 16, 2024 at 6:41 PM
Breaking news: A juvenile killed four people and injured five at a Christian school in Madison, Wisconsin, Madison Police Chief Shon F. Barnes said Monday. The shooter is also dead.
Reposted by D Milroy
“UnitedHealthcare shooting: The person of interest had a 3D-printed Glock, which might have been involved in the first assassination using a 3D-printed weapon
🔗 www.404media.co/unitedhealth...
🔗 www.404media.co/unitedhealth...
December 10, 2024 at 4:22 PM
“UnitedHealthcare shooting: The person of interest had a 3D-printed Glock, which might have been involved in the first assassination using a 3D-printed weapon
🔗 www.404media.co/unitedhealth...
🔗 www.404media.co/unitedhealth...
Reposted by D Milroy
pgMail 1.5 Released!
Well, it's pretty rare that I get anyone talking about my old PostgreSQL email stored procedure, but here we are. I wrote this thing almost 25 years ago to essentially replicate the functionality of xp_sendmail into PostgreSQL. I released it to the world, because I knew other…
Well, it's pretty rare that I get anyone talking about my old PostgreSQL email stored procedure, but here we are. I wrote this thing almost 25 years ago to essentially replicate the functionality of xp_sendmail into PostgreSQL. I released it to the world, because I knew other…
pgMail 1.5 Released!
Well, it's pretty rare that I get anyone talking about my old PostgreSQL email stored procedure, but here we are. I wrote this thing almost 25 years ago to essentially replicate the functionality of xp_sendmail into PostgreSQL. I released it to the world, because I knew other people would have this issue. And as it turned out, they absolutely do.
www.brandenwilliams.com
December 10, 2024 at 4:26 PM
pgMail 1.5 Released!
Well, it's pretty rare that I get anyone talking about my old PostgreSQL email stored procedure, but here we are. I wrote this thing almost 25 years ago to essentially replicate the functionality of xp_sendmail into PostgreSQL. I released it to the world, because I knew other…
Well, it's pretty rare that I get anyone talking about my old PostgreSQL email stored procedure, but here we are. I wrote this thing almost 25 years ago to essentially replicate the functionality of xp_sendmail into PostgreSQL. I released it to the world, because I knew other…
Reposted by D Milroy
I should hope so. When I'm gone from this earth, all that will be left of me is what I contributed to the AI consciousness.
New: your Bluesky posts are probably in many different datasets for potential AI/ML research. There's one of 300 million posts, two million, 8 million, etc www.404media.co/bluesky-post...
Your Bluesky Posts Are Probably In A Bunch of Datasets Now
After a machine learning librarian released and then deleted a dataset of one million Bluesky posts, several other, even bigger datasets have appeared in its place—including one of almost 300 million ...
www.404media.co
December 3, 2024 at 6:20 PM
I should hope so. When I'm gone from this earth, all that will be left of me is what I contributed to the AI consciousness.
Reposted by D Milroy
I have created a starter pack to shine light on organizations that make notable contributions back to the #infosec community in the form of generous free tiers, valuable webinars, trainings, resources, etc.
I am sure there are others, just DM or reply with any suggestions!
go.bsky.app/NMbiTUL
I am sure there are others, just DM or reply with any suggestions!
go.bsky.app/NMbiTUL
November 27, 2024 at 4:40 PM
I have created a starter pack to shine light on organizations that make notable contributions back to the #infosec community in the form of generous free tiers, valuable webinars, trainings, resources, etc.
I am sure there are others, just DM or reply with any suggestions!
go.bsky.app/NMbiTUL
I am sure there are others, just DM or reply with any suggestions!
go.bsky.app/NMbiTUL
So I’m not the most jaded and cynical person in the world. lol
www.joanwestenberg.com/modern-work-...
www.joanwestenberg.com/modern-work-...
Modern Work Fucking Sucks.
It’s Monday morning. The first thing you see (yes, before you see your kids, your partner, even your coffee) is a Slack notification.
That Slack notification leads you to a Confluence document, which...
www.joanwestenberg.com
December 2, 2024 at 12:03 AM
So I’m not the most jaded and cynical person in the world. lol
www.joanwestenberg.com/modern-work-...
www.joanwestenberg.com/modern-work-...