blueteamsec

blueteamsec@infosec.pub

PostsComments

digicat@infosec.pubMEnglish · 3 days ago

CTO at NCSC Summary: week ending January 18th

ctoatncsc.substack.com

0

3

CTO at NCSC Summary: week ending January 18th

ctoatncsc.substack.com

digicat@infosec.pubMEnglish · 3 days ago

0

digicat@infosec.pubMEnglish · 5 hours ago

sdc: Self Decrypting Binary Generator

0

2

sdc: Self Decrypting Binary Generator

digicat@infosec.pubMEnglish · 5 hours ago

0

digicat@infosec.pubMEnglish · 13 hours ago

VoidLink: Evidence That the Era of Advanced AI-Generated Malware Has Begun - hyperbole warning - "advanced" as opposed to human productivity enhanced

research.checkpoint.com

1

3

VoidLink: Evidence That the Era of Advanced AI-Generated Malware Has Begun - hyperbole warning - "advanced" as opposed to human productivity enhanced

research.checkpoint.com

digicat@infosec.pubMEnglish · 13 hours ago

1

digicat@infosec.pubMEnglish · 13 hours ago

Malware Peddlers Are Now Hijacking Snap Publisher Domains

0

5

Malware Peddlers Are Now Hijacking Snap Publisher Domains

digicat@infosec.pubMEnglish · 13 hours ago

0

digicat@infosec.pubMEnglish · 13 hours ago

Operation Nomad Leopard: Targeted Spear-Phishing Campaign Against Government Entities in Afghanistan

www.seqrite.com

0

2

Operation Nomad Leopard: Targeted Spear-Phishing Campaign Against Government Entities in Afghanistan

www.seqrite.com

digicat@infosec.pubMEnglish · 13 hours ago

0

digicat@infosec.pubMEnglish · 2 days ago

Pro-Russia hacktivist activity continues to target UK organisations

www.ncsc.gov.uk

0

10

Pro-Russia hacktivist activity continues to target UK organisations

www.ncsc.gov.uk

digicat@infosec.pubMEnglish · 2 days ago

0

digicat@infosec.pubMEnglish · 2 days ago

How to Get Scammed (by DPRK Hackers)

1

4

How to Get Scammed (by DPRK Hackers)

digicat@infosec.pubMEnglish · 2 days ago

1

digicat@infosec.pubMEnglish · 2 days ago

Detection of Kerberos Golden Ticket Attacks via Velociraptor

0

4

Detection of Kerberos Golden Ticket Attacks via Velociraptor

digicat@infosec.pubMEnglish · 2 days ago

0

digicat@infosec.pubMEnglish · 2 days ago

Iranian MOIS operating from Starlink

0

4

Iranian MOIS operating from Starlink

digicat@infosec.pubMEnglish · 2 days ago

0

digicat@infosec.pubMEnglish · 2 days ago

Mega RMM KQL Query

0

2

Mega RMM KQL Query

digicat@infosec.pubMEnglish · 2 days ago

0

digicat@infosec.pubMEnglish · 2 days ago

Monitor New Actions in Sentinel & Defender XDR (V2)

0

2

Monitor New Actions in Sentinel & Defender XDR (V2)

digicat@infosec.pubMEnglish · 2 days ago

0

digicat@infosec.pubMEnglish · 2 days ago

What's in the box !? - 'we were able to obtain a set of pen-testing tools from an active pen-tester and security analyst in China'

open.substack.com

0

6

What's in the box !? - 'we were able to obtain a set of pen-testing tools from an active pen-tester and security analyst in China'

open.substack.com

digicat@infosec.pubMEnglish · 2 days ago

0

digicat@infosec.pubMEnglish · 3 days ago

Bad Vibes: Comparing the Secure Coding Capabilities of Popular Coding Agents

blog.tenzai.com

0

4

Bad Vibes: Comparing the Secure Coding Capabilities of Popular Coding Agents

blog.tenzai.com

digicat@infosec.pubMEnglish · 3 days ago

0

digicat@infosec.pubMEnglish · 3 days ago

GhostVEH: Registers Vectored Exception Handlers by directly manipulating internal LdrpVectorHandlerList structure instead of calling RtlAddVectoredExceptionHandler.

0

4

GhostVEH: Registers Vectored Exception Handlers by directly manipulating internal LdrpVectorHandlerList structure instead of calling RtlAddVectoredExceptionHandler.

digicat@infosec.pubMEnglish · 3 days ago

0

digicat@infosec.pubMEnglish · 3 days ago

anamnesis-release: Automatic Exploit Generation with LLMs

0

4

anamnesis-release: Automatic Exploit Generation with LLMs

digicat@infosec.pubMEnglish · 3 days ago

0

digicat@infosec.pubMEnglish · 2 days ago

sliver-tor-bridge: Tor transport bridge for Sliver C2 - anonymous command and control

0

3

sliver-tor-bridge: Tor transport bridge for Sliver C2 - anonymous command and control

digicat@infosec.pubMEnglish · 2 days ago

0

digicat@infosec.pubMEnglish · 3 days ago

Operation Poseidon: Spear-Phishing Attacks Abusing Google Ads Redirection Mechanisms

www.genians.co.kr

0

3

Operation Poseidon: Spear-Phishing Attacks Abusing Google Ads Redirection Mechanisms

www.genians.co.kr

digicat@infosec.pubMEnglish · 3 days ago

0

digicat@infosec.pubMEnglish · 3 days ago

6-day and IP Address Certificates are Generally Available

letsencrypt.org

0

10

6-day and IP Address Certificates are Generally Available

letsencrypt.org

digicat@infosec.pubMEnglish · 3 days ago

0

digicat@infosec.pubMEnglish · 3 days ago

Inside a Malicious Push Network: What 57M Logs Taught Us

www.infoblox.com

1

6

Inside a Malicious Push Network: What 57M Logs Taught Us

www.infoblox.com

digicat@infosec.pubMEnglish · 3 days ago

1

digicat@infosec.pubMEnglish · 3 days ago

5 Malicious Chrome Extensions Enable Session Hijacking in Enterprise HR and ERP Systems

1

6

5 Malicious Chrome Extensions Enable Session Hijacking in Enterprise HR and ERP Systems

digicat@infosec.pubMEnglish · 3 days ago

1

blueteamsec@infosec.pub

blueteamsec@infosec.pub

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !blueteamsec@infosec.pub

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

21 users / day
92 users / week
286 users / month
954 users / 6 months
2 local subscribers
593 subscribers
2.06K Posts
157 Comments
Modlog

mods:
digicat@infosec.pub