df_sec - Network
Ransomware Tool Matrix: This repository lists tools used by ransomware gangs. Defenders can detect and block these commonly reused tools to...
https://infosec.exchange/@df_sec...Ransomware Tool Matrix: This repository lists tools used by ransomware gangs. Defenders can detect and block these commonly reused tools to stop intrusions.
https://github.com/BushidoUK/Ransomware-Tool-Matrix
7.5.2025 15:11Ransomware Tool Matrix: This repository lists tools used by ransomware gangs. Defenders can detect and block these commonly reused tools to...https://infosec.exchange/@df_sec...
State-of-the-art phishing: MFA bypass by Jaeson Schultz...
https://infosec.exchange/@df_sec...State-of-the-art phishing: MFA bypass by Jaeson Schultz @TalosSecurity
https://blog.talosintelligence.com/state-of-the-art-phishing-mfa-bypass/
5.5.2025 13:08State-of-the-art phishing: MFA bypass by Jaeson Schultz...https://infosec.exchange/@df_sec...
ArgFuscator is an open-source web app that generates obfuscated command lines for common system tools. Great for testing your defenses...
https://infosec.exchange/@df_sec...ArgFuscator is an open-source web app that generates obfuscated command lines for common system tools. Great for testing your defenses against real-world attack techniques.
#infosec #pentesting #redteam #blueteam
31.3.2025 17:29ArgFuscator is an open-source web app that generates obfuscated command lines for common system tools. Great for testing your defenses...https://infosec.exchange/@df_sec...
How well do you protect your privacy?The Privacy Checkup helps you assess your online surveillance defenses and take steps to protect your...
https://infosec.exchange/@df_sec...How well do you protect your privacy?
The Privacy Checkup helps you assess your online surveillance defenses and take steps to protect your data.
https://privacy-checkup.info (English, Deutsch, Español)
30.3.2025 14:01How well do you protect your privacy?The Privacy Checkup helps you assess your online surveillance defenses and take steps to protect your...https://infosec.exchange/@df_sec...
A great read on the exploitation of VMware vulnerabilities - from both attacker and defender perspectives - plus practical recommendations...
https://infosec.exchange/@df_sec...A great read on the exploitation of VMware vulnerabilities - from both attacker and defender perspectives - plus practical recommendations to strengthen your security posture.
"Breaking the Virtual Barrier: From Web-Shell to Ransomware"
29.3.2025 20:20A great read on the exploitation of VMware vulnerabilities - from both attacker and defender perspectives - plus practical recommendations...https://infosec.exchange/@df_sec...
Eine kriminelle Organisation hinter mehr als 75.000 Fake-Shops, über 1 Mio. Bestellungen & mehr als $50M Schaden. Einblick in ihr...
https://infosec.exchange/@df_sec...Eine kriminelle Organisation hinter mehr als 75.000 Fake-Shops, über 1 Mio. Bestellungen & mehr als $50M Schaden. Einblick in ihr ausgeklügeltes System & wie sie Käufer täuschen.
#38C3: "Fake-Shops von der Stange: BogusBazaar" mit @kaibiermann und @kantorkel.
https://media.ccc.de/v/38c3-fake-shops-von-der-stange-bogusbazaar
https://infosec.exchange/@df_sec...
"Mastering Sysmon: Deploying, Configuring, and Fine-Tuning"A free mini eBook for #DFIR professionals with practical steps to...
https://infosec.exchange/@df_sec..."Mastering Sysmon: Deploying, Configuring, and Fine-Tuning"
A free mini eBook for #DFIR professionals with practical steps to deploy, fine-tune, and start logging with Sysmon.
https://dfirinsights.com/2024/11/27/mastering-sysmon-e-book-release/
16.12.2024 11:16"Mastering Sysmon: Deploying, Configuring, and Fine-Tuning"A free mini eBook for #DFIR professionals with practical steps to...https://infosec.exchange/@df_sec...
Carseat is a Python implementation of GhostPack's Seatbelt, a situational awareness tool for analyzing Windows security...
https://infosec.exchange/@df_sec...Carseat is a Python implementation of GhostPack's Seatbelt, a situational awareness tool for analyzing Windows security configurations.
https://github.com/0xthirteen/Carseat
9.12.2024 19:20Carseat is a Python implementation of GhostPack's Seatbelt, a situational awareness tool for analyzing Windows security...https://infosec.exchange/@df_sec...
The fascinating security model of dark web marketplaces by @eb https://boehs.org/node/dark-web-security#infosec
https://infosec.exchange/@df_sec...The fascinating security model of dark web marketplaces by @eb
https://boehs.org/node/dark-web-security
2.12.2024 20:39The fascinating security model of dark web marketplaces by @eb https://boehs.org/node/dark-web-security#infosechttps://infosec.exchange/@df_sec...
That's a Cybersecurity Advisory worth reading, with many important points to note.Enhancing Cyber Resilience: Insights from CISA Red...
https://infosec.exchange/@df_sec...That's a Cybersecurity Advisory worth reading, with many important points to note.
Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Critical Infrastructure Sector Organization
https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-326a
https://infosec.exchange/@df_sec...
LOLESXi features a comprehensive list of binaries/scripts natively available in VMware ESXi that adversaries have utilised in their...
https://infosec.exchange/@df_sec...LOLESXi features a comprehensive list of binaries/scripts natively available in VMware ESXi that adversaries have utilised in their operations.
https://lolesxi-project.github.io/LOLESXi/#
#infosec #pentesting #redteam #blueteam
8.11.2024 12:37LOLESXi features a comprehensive list of binaries/scripts natively available in VMware ESXi that adversaries have utilised in their...https://infosec.exchange/@df_sec...
Phishing remains one of the most widespread cyberattacks - here are some tips on how to avoid falling victim!5 Phishing Email Scams and How...
https://infosec.exchange/@df_sec...Phishing remains one of the most widespread cyberattacks - here are some tips on how to avoid falling victim!
5 Phishing Email Scams and How NOT To Fall For Them
https://www.huntress.com/blog/5-phishing-email-scams-and-how-not-to-fall-for-them
https://infosec.exchange/@df_sec...
🚨 Exciting news for all hackers and tech enthusiasts! The #DEFCON32 talks are now available on YouTube!...
https://infosec.exchange/@df_sec...🚨 Exciting news for all hackers and tech enthusiasts! The #DEFCON32 talks are now available on YouTube! 🎉
https://youtube.com/playlist?list=PL9fPq3eQfaaB2scbXRczwvjVH0ckX4bwt
#infosec #pentesting #redteam #blueteam
18.10.2024 18:37🚨 Exciting news for all hackers and tech enthusiasts! The #DEFCON32 talks are now available on YouTube!...https://infosec.exchange/@df_sec...
A tool that uses the Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events...
https://infosec.exchange/@df_sec...A tool that uses the Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
https://github.com/netero1010/EDRSilencer
17.10.2024 17:32A tool that uses the Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events...https://infosec.exchange/@df_sec...
Spannend & unterhaltsam: Die #BigBrotherAwards prämieren jedes Jahr die größten Datensünder in Wirtschaft &...
https://infosec.exchange/@df_sec...Spannend & unterhaltsam: Die #BigBrotherAwards prämieren jedes Jahr die größten Datensünder in Wirtschaft & Politik!
BigBrotherAwards 2024: Preisträger, Bilder und Livestream unter https://bigbrotherawards.de/2024
Also available in English: https://bigbrotherawards.de/en/2024
17.10.2024 11:15Spannend & unterhaltsam: Die #BigBrotherAwards prämieren jedes Jahr die größten Datensünder in Wirtschaft &...https://infosec.exchange/@df_sec...
Guidance on Detecting and Mitigating Active Directory...
https://infosec.exchange/@df_sec...Guidance on Detecting and Mitigating Active Directory Compromises
16.10.2024 18:18Guidance on Detecting and Mitigating Active Directory...https://infosec.exchange/@df_sec...
Event Log Talks a Lot: Identifying Human-operated Ransomware through Windows Event...
https://infosec.exchange/@df_sec...Event Log Talks a Lot: Identifying Human-operated Ransomware through Windows Event Logs
https://blogs.jpcert.or.jp/en/2024/09/windows.html
15.10.2024 12:58Event Log Talks a Lot: Identifying Human-operated Ransomware through Windows Event...https://infosec.exchange/@df_sec...
Active Directory Hardening Series - Part 5 - Enforcing LDAP Channel...
https://infosec.exchange/@df_sec...Active Directory Hardening Series - Part 5 - Enforcing LDAP Channel Binding
14.10.2024 12:16Active Directory Hardening Series - Part 5 - Enforcing LDAP Channel...https://infosec.exchange/@df_sec...
SharpExclusionFinder: This C# tool finds Windows Defender folder exclusions using Windows Defender through its command-line tool...
https://infosec.exchange/@df_sec...SharpExclusionFinder: This C# tool finds Windows Defender folder exclusions using Windows Defender through its command-line tool (MpCmdRun.exe)
https://github.com/Friends-Security/SharpExclusionFinder
A blog explaining the technique utilised can be viewed here: https://blog.fndsec.net/2024/10/04/uncovering-exclusion-paths-in-microsoft-defender-a-security-research-insight
13.10.2024 19:04SharpExclusionFinder: This C# tool finds Windows Defender folder exclusions using Windows Defender through its command-line tool...https://infosec.exchange/@df_sec...
ConPass: How to do password spraying while minimizing the risk of locking accounts.Spray passwords, avoid...
https://infosec.exchange/@df_sec...ConPass: How to do password spraying while minimizing the risk of locking accounts.
Spray passwords, avoid lockouts
https://en.hackndo.com/password-spraying-lockout/
https://infosec.exchange/@df_sec...
