seb 
@seb@ioc.exchange
- alter ego
- https://sfba.social/@seb
Mod
Cyber blue team leader by day, tinkerer/hacker at night.
Architecting secure systems and traveling the world is what I like.
Unfair, harsh, inconsiderate behavior is what I don't like.
Joined Nov 2019
We observe so many vendor breaches since WFH started, feels like almost everyone got breached around us. #cybersecurity #infosec #COVID19
What is your strategy to approach application teams with #cybersecurity concerns? #infosec #blueteam
Anyone doing a vendor risk assessment before allowing IM Federation?
Anyone looked into Microsoft Flow / PowerAutomate as a phishing and dataexfil vector yet? #infosec #cybersecurity
Pro-actively searching through and correlating logs in your SIEM and cyber tools we call Threat Hunting. What does one call pro-actively searching through and correlating threat intel? Is it just the creation of more threat intel or is there a word/phrase for it? #cybersecurity #infosec #threatintel
If you still didn’t look at your VPN solution and did not run a threat hunt on it yet, go do it! #infosec #blueteam #cybersecurity https://www.zdnet.com/article/iranian-hackers-have-been-hacking-vpn-servers-to-plant-backdoors-in-companies-around-the-world/
#infosec community! I predict national firewalls completely segmenting the Internet within the next 10y. What will be the FREE alternative Internet? Will there even be one?
#infosec community! What is your favorite GRC tool?
Finally got around adding all these TI links into a wiki page: https://codeberg.org/cyberseb/ti/wiki/CTI
It already includes a good amount of TI resources but will be updated every time I run across something cool.
Why do you think the NSA is telling us to patch that trust vuln right away? #cybersecurity #infosec #blueteam
This is an actively exploited attack vector and slowly becoming mainstream! If you haven't put protection (CASB) in place yet, do it now.
#cybersecurity #infosec #blueteam
https://krebsonsecurity.com/2020/01/tricky-phish-angles-for-persistence-not-passwords/
If your organization cannot afford Enterprise grade DNS security tools, have a look at https://github.com/StevenBlack/hosts #cybersecurity #blueteam #InfoSec
Looking to add some more miners to our minemeld (https://github.com/PaloAltoNetworks/minemeld/wiki) instance. Anyone had a lot of success and can recommend one or two sources? Any bad experiences with any of the default miners? #InfoSec #cybersecurity #blueteam #threatintel #automation
Anyone have a good tool that makes searching through Windows Server DNS Debug Logs easy? #infosec #cybersecurity #blueteam
The excitement you feel when your SOC reports the first phishing email that found a way around ATP Safe Links... #infosec #cybersecurity #blueteam
When your MSP downloads random tools onto your production servers that trip your AV... *sigh* #cybersecurity #infosec #sysadminfail
Operation Glowing Symphony | If you are into stories about US Cyber Command + Anonymous, this is the coolest podcast episode ever! #infosec #redteam #cybersecurity #cyber
https://podcasts.apple.com/us/podcast/darknet-diaries/id1296350485?i=1000455532386
Longest #InfoSec #tools list I have ever seen https://medium.com/@markmotig/security-tool-list-update-dec-2020-99a27aec3dfd
- alter ego
- https://sfba.social/@seb
Mod
Cyber blue team leader by day, tinkerer/hacker at night.
Architecting secure systems and traveling the world is what I like.
Unfair, harsh, inconsiderate behavior is what I don't like.
Joined Nov 2019
seb 's choices:
