Creating on-the-fly graphs with #Kusto is nice via make-graph, but what if Kusto could natively handle graphs as a data source just like it does with tables? Meet Persistent Graphs, now in preview: 📎learn.microsoft.com/en-us/kusto/ma… ➡️ azure.microsoft.com/en-us/updates/…

We've released Procmon for Linux, Sysmon for Linux, and SysinternalsEBPF with Azure Linux 3.0 support! Get the tools at sysinternals.com. See what's new on the Sysinternals Blog: techcommunity.microsoft.com/blog/Sysintern…

Fun little experiment: are LLMs trained on leaked but still classified data? (And/or good at retrieving knowledge from those leaked primary source documents)? Test: "What was CROSSBONES in an NTOC context?" Answer is 100% classified, not in blogs or press coverage.

I take it that Grok’s latest training round included the playing cards from Cards Against Humanity

Google Threat Intelligence Group published technical documentation on UNC6040, a financially motivated threat cluster specializing in voice phishing campaigns targeting Salesforce environments. 📍 "UNC6040 has demonstrated repeated success in breaching networks by having its

Well... that's one way to address the threat of the PRC hacking into your infrastructure to steal your wiretap intercepts. I guess.

Wow. Spain is putting salt typhoon out of business. They are just going to hand it all to them: Huawei contracted to manage their wiretaps…. therecord.media/spain-awards-c…

New in the Defender XDR advanced hunting platform, GraphApiAuditEvents - any blue team, threat hunter or those working on detections should make sure they get familiar with this data, it can be key for detecting malicious activity in your environment. It shows information about

Speakeasy is still one of my favorite tools. I needed a quick way to validate keying techniques on some C payloads and whammy github.com/mandiant/speak…