🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

New research study! We've analyzed the cloud security posture of thousands of environments across AWS, Azure, and Google Cloud datadoghq.com/state-of-cloud… 🧵

#100DaysofYara Day 8: Introducing Yara Toolkit, an online app for all things Yara! 🚀 (It's not really day 8, I spent my weekend on it 😅) Since we're still early in the challenge, I thought it might be useful for some of you to have a dedicated portal, so I created Yara Toolkit

We’re excited to announce the European version of the conference: fwd:cloudsec Europe! It will take place on the 17th of September 2024 in Brussels, Belgium. CFP and registration will open in Spring, stay tuned!

fwd:cloudsec Europe follows the same vision as fwd:cloudsec: a vendor-neutral, practitioner-focused cloud security conference. It’s brought to Europe by a group of locals: Ben Bridts‏, Christophe Tafani-Dereeper, Karim El-Melhaoui, Nick Jones, Sochima, along with Aaron Zollman and Chris Farris (@[email protected]).

Thanks to open source tools and datasets, plotting IP addresses by countries on fancy choropleth map is super easy! - Jupyter notebook with plotly or folium - Alexandre Dulaunoy @[email protected]'s GeoOpen mmdb - BlockList.de ssh ip dataset Run in the cloud thanks to Binder Team mybinder.org/v2/gh/udgover/…

🚀 Today at the InfoSec Jupyterthon conference! I released the Jupyter Universe project 🌌 - a community-driven search engine that catalogs infosec notebooks! Now, finding a notebook for a specific usecase just got easier! A thread! 🧵 #infosec #python #jupyter #notebook 👉 pic.x.com/03AaVxwr9h

New from Datadog Security Research! Here's the story of how tracking SNS enumeration activity across multiple customer environments led to the takedown of a phishing site that was impersonating the French government. securitylabs.datadoghq.com/articles/tales…

Verified! The first #Docker escape at #Pwn2Own involved two bugs, including a UAF. The team from STAR Labs SG did great work in the demonstration and earned $60,000 and 6 Master of Pwn points. #P2OVancouver

Bonjour Assurance Maladie quelle est votre définition de "momentanément" ? Jours, semaines, mois ? Votre service en ligne de renouvellement de carte vitale ne fonctionne pas depuis le début de l'année... Et non, je ne souhaite pas effectuer la démarche par courier.

some people asked for the code .. so I decided to quickly refactor my scrappy paramiko script and turned it into an ssh agent implementation that works with a vanilla openssh client that has a single line patched out. github.com/blasty/JiaTans…

📢 #Yeti is now part of the ODFIR infrastructure automation project! It's never been easier to connect it to a Timesketch instance and enrich all your sketches with juicy forensics intelligence ✨ More details here 👇🏻 osdfir.blogspot.com/2024/04/welcom… #DFIR #CTI #Timesketch

In case you missed it, check out our latest AWS vulnerability! We uncovered two scenarios in which the AWS Amplify service was exposing IAM roles to takeover! Anyone in the world could have gotten access to a victim AWS account through these methods! securitylabs.datadoghq.com/articles/ampli…

🔧 JIT: A new Kunai release is available before my talk/workshop at Pass the SALT Conference 2024 ! It includes bug fixes, probes enhancements and perf improvements for a tailored #threathunting experience on #linux systems. Check it out: github.com/kunai-project/…

We start day 1 with a dfir & threat Intel session. First, tomchop and Sebastien Larinier are introducing Yeti. #pts24 github.com/yeti-platform/…

Hey, cannot update yet ? Wanna avoid CVE-2024-6387 #regreSSHion exploits. Update your fail2ban to spot the exploit. It is very very noisy.... add ^ssh_dispatch_run_fatal: Connection from <HOST> port to cmdfailre parameter in sshd.conf filter.

PIVOTcon 2025 agenda: pivotcon.org/agenda-2025/ #PIVOTcon25 talks and presenters in 🧵⬇️ 2/19

❓Ever wanted to have an IP geolocation database with 2 locations, one physical for the device and one logical from whois data? 👉We provide a free MMDB file for download and a brand new Website for lookups & even a free API access: geolocus.io

🤓 I built an #MCP for NOVA so you can use it as a guardrail for your AI system. NOVA is a prompt pattern matching framework. It is primarily used for prompt hunting, similarly to how you use YARA for hunting files. But NOVA can also be used as a guardrail to prevent malicious

Bearhost (aka UNDERGROUND and recently VOODOO SERVERS), alledgelly the "biggest bulletproof hosting" has decided to do an exit scam after several years of service, leaving a "farewell note" in forums and shutting down servers suddenly with no further reasons Spamhaus abuse.ch

After #HW, let's dive into our #DFIR/TI session🥰: - tomchop will speak about #OpenRelik a new collaborative IR invest portal 🚀 - Frederic Baguelin & Matt Muir will introduce us to their e2e malwares processing workflow using FLOSS - and we'll be able to practice #MISP as analysts