Capturing Detection Ideas to Improve Their Impact | by Florian Roth | Oct, 2022 | Medium
https://cyb3rops.medium.com/capturing-detection-ideas-to-improve-their-impact-311cf4e1c7a8
Elizabeth Tsurkov🌻 on Twitter: "Only 3 months ago, Russian propaganda was claiming that the Crimea bridge was impossible to attack because of 20 different modes of protection covering it, including military dolphins (#17) https://t.co/gJdON9o4Vl What a colossal failure https://t.co/70ZrQoKXYb" / Twitter
https://twitter.com/elizrael/status/1578675708876193793
GitHub - X-C3LL/SharpNTLMRawUnHide: C# version of NTLMRawUnHide
https://github.com/X-C3LL/SharpNTLMRawUnHide
REPORT: Crimean sanctions: violations, monitoring, and enforcement. - Euromaidan Press
https://euromaidanpress.com/2022/10/08/report-crimean-sanctions-violations-monitoring-and-enforcement/
Hunting in On-Premises Exchange Server logs | Microsoft 365 Security
https://m365internals.com/2022/10/07/hunting-in-on-premises-exchange-server-logs/
Microsoft Issues Improved Mitigations for Unpatched Exchange Server Vulnerabilities
https://thehackernews.com/2022/10/microsoft-issues-improved-mitigations.html
Hackers Exploiting Unpatched RCE Flaw in Zimbra Collaboration Suite
https://thehackernews.com/2022/10/hackers-exploiting-unpatched-rce-flaw.html
What can we learn from leaked Insyde's BIOS for Intel Alder Lake
https://hardenedvault.net/blog/2022-10-08-alderlake_fw-leak/
2*yo on Twitter: "Looks like a new critical admin GUI vulnerability that allows attackers to bypass the admin authentication is coming on FortiGate and FortiProxy. Anyone could share the Fortinet Customer Support Bulletin CSB-221006-1 ? Is it already exploited @GreyNoiseIO ? #vuln #cve?" / Twitter
https://twitter.com/2xyo/status/1578123357840703518
Kevin Beaumont on Twitter: "Here's another wild element. If you use Defender free with Windows Server or the paid Defender for Endpoint offering, they *automatically exclude* the IIS process (Exchange adds the Web Server role)- you can't see exclusions in product as it's automatic. https://t.co/PfeIli9Zdq https://t.co/QhNwxZRSuh" / Twitter
https://twitter.com/GossiTheDog/status/1578313384298094592
405 Banned
https://bazaar.abuse.ch/browse/tag/sincaplox-com/
Women Cryptologists of World War II Stamps Stamp | USPS.com
https://store.usps.com/store/product/buy-stamps/women-cryptologists-of-world-war-ii-stamps-S_482204
OthersideMeta (@TimCostello) / Twitter
https://twitter.com/TimCostello
Facebook Detects 400 Android and iOS Apps Stealing Users Log-in Credentials
https://thehackernews.com/2022/10/facebook-detects-400-android-and-ios.html
CVE-2022-41343 - RCE via Phar Deserialisation
https://tantosec.com/blog/cve-2022-41343/
GitHub - jamf/aftermath: Aftermath is a free macOS IR framework
https://github.com/jamf/aftermath
A Multimillion Dollar Global Online Credit Card Scam Uncovered
https://reasonlabs.com/research/credit-card-scam-report
Hack The Box Community Meetups | Let's Hacking & Train Together
https://www.hackthebox.com/meetups
LofyGang hackers built a credential-stealing enterprise on Discord, NPM
https://www.bleepingcomputer.com/news/security/lofygang-hackers-built-a-credential-stealing-enterprise-on-discord-npm/
Metasploit Weekly Wrap-Up | Rapid7 Blog
https://www.rapid7.com/blog/post/2022/10/07/metasploit-weekly-wrap-up-179/
Oktoberfest Cyber Room 101 Tickets, Thu 27 Oct 2022 at 18:30 | Eventbrite
https://www.eventbrite.co.uk/e/430177702087
vx-underground - malware samples
https://www.vx-underground.org/malware.html
iamdeadlyz.pcc.eth | YGG on Twitter: "@0xDanielLopez @LooksRare @malwrhunterteam @dubstard @1ZRR4H C&C: /nft-charity.net /nft-charity.net/log ../configuration ../claim-logs 🚩 @etherscan heads up 0xa31573be292bd03d36db137b6c2ab6eaa3d5e572 0xB639Be1972DAAF1c94C75134480B6f9Ae278005e 0x925F59e68BF2D218ae6cB42Df763Ae25C6F2e140 Related to several drainers https://t.co/3DglAToniC" / Twitter
https://twitter.com/Iamdeadlyz/status/1565272688960348160
Christopher Miller on Twitter: "Huge blast has taken out sections of Kerch Bridge, Putin’s pet project to connect Russia with occupied Crimea. Its partial destruction could disrupt Russian supply lines for troops in Kherson and Zaporizhzhia. But perhaps more than anything, a big, embarrassing hit against Putin. https://t.co/tNgfB6Qt1E" / Twitter
https://twitter.com/i/web/status/1578648409241972736
DWriteCore overview - Win32 apps | Microsoft Learn
https://learn.microsoft.com/en-us/windows/win32/directwrite/dwritecore-overview
BlackByte Ransomware Abuses Vulnerable Windows Driver to Disable Security Solutions
https://thehackernews.com/2022/10/blackbyte-ransomware-abuses-vulnerable.html
depths of wikipedia on Twitter: "oh god oh no https://t.co/N5pJwGPAja" / Twitter
https://twitter.com/depthsofwiki/status/1578504968020971521
GitHub - med0x2e/vba2clr: Running .NET from VBA
https://github.com/med0x2e/vba2clr
Eva on Twitter: "I am begging people who run conferences to think about people who wear skirts and dresses when they are making their seating arrangements because I don’t want to have to spend my entire interview desperately hoping that I’m not flashing the audience." / Twitter
https://twitter.com/evacide/status/1578776562865872896
WinDbg-Samples/Readme.txt at master · microsoft/WinDbg-Samples · GitHub
https://github.com/microsoft/WinDbg-Samples/blob/master/TargetComposition/SymBuilder/Readme.txt
Active Directory | HideAndSec
https://hideandsec.sh/books/cheatsheets-82c/page/active-directory
World’s largest crypto exchange hacked with possible losses of $500m | Cryptocurrencies | The Guardian
https://www.theguardian.com/technology/2022/oct/07/binance-crypto-hack-suspended-operations