seb @seb@ioc.exchange

Pro-actively searching through and correlating logs in your SIEM and cyber tools we call Threat Hunting. What does one call pro-actively searching through and correlating threat intel? Is it just the creation of more threat intel or is there a word/phrase for it? #cybersecurity #infosec #threatintel

If you still didn’t look at your VPN solution and did not run a threat hunt on it yet, go do it! #infosec #blueteam #cybersecurity https://www.zdnet.com/article/iranian-hackers-have-been-hacking-vpn-servers-to-plant-backdoors-in-companies-around-the-world/

#infosec community! I predict national firewalls completely segmenting the Internet within the next 10y. What will be the FREE alternative Internet? Will there even be one?

#infosec community! What is your favorite GRC tool?

Finally got around adding all these TI links into a wiki page: https://codeberg.org/cyberseb/ti/wiki/CTI

It already includes a good amount of TI resources but will be updated every time I run across something cool.

#cybersecurity #infosec #blueteam

Why do you think the NSA is telling us to patch that trust vuln right away? #cybersecurity #infosec #blueteam

This is an actively exploited attack vector and slowly becoming mainstream! If you haven't put protection (CASB) in place yet, do it now.

#cybersecurity #infosec #blueteam

https://krebsonsecurity.com/2020/01/tricky-phish-angles-for-persistence-not-passwords/

If your organization cannot afford Enterprise grade DNS security tools, have a look at https://github.com/StevenBlack/hosts #cybersecurity #blueteam #InfoSec

Looking to add some more miners to our minemeld (https://github.com/PaloAltoNetworks/minemeld/wiki) instance. Anyone had a lot of success and can recommend one or two sources? Any bad experiences with any of the default miners? #InfoSec #cybersecurity #blueteam #threatintel #automation

Anyone have a good tool that makes searching through Windows Server DNS Debug Logs easy? #infosec #cybersecurity #blueteam

The excitement you feel when your SOC reports the first phishing email that found a way around ATP Safe Links... #infosec #cybersecurity #blueteam

When your MSP downloads random tools onto your production servers that trip your AV... *sigh* #cybersecurity #infosec #sysadminfail

Operation Glowing Symphony | If you are into stories about US Cyber Command + Anonymous, this is the coolest podcast episode ever! #infosec #redteam #cybersecurity #cyber

https://podcasts.apple.com/us/podcast/darknet-diaries/id1296350485?i=1000455532386

Longest #InfoSec #tools list I have ever seen https://medium.com/@markmotig/security-tool-list-update-dec-2020-99a27aec3dfd

The Githubification of #InfoSec #blueteam https://medium.com/@johnlatwc/the-githubification-of-infosec-afbdbfaad1d1

The Ultimate Phishing Defense KPI or how to show that your phishing defense is worth the money. #cybersecurity #infosec #blueteam https://rfc.ioc.exchange/seb/the-ultimate-phishing-kpi

@Shib @chmodx This might be an idea worth knowing for both of you: https://en.wikipedia.org/wiki/Traffic_Light_Protocol #cybersecurity #infosec #ioc

If you are looking for other #infosec #mastodon users, follow the links below: https://mastodon.social/explore/infosec
https://chaos.social/explore/infosec https://infosec.exchange/explore/infosec https://hackers.town/explore/ There are many other instances but you get it by now...

Which attack vector do you worry most about? #cybersecurity #infosec (reply if other)

Are you building a #cybersecurity team and are in need of a toolset that allows multiple analysts to collaborate on cases and observables/offenses/notables?

Check out the Hive Project: https://thehive-project.org/

#infosec #cyberops #foss