OilRig’s Outer Space and Juicy Mix: Same ol’ rig, new drill pipes - just released discussing operation from 2021 and 2022 against Israel by Iran
🗣digicat
🎖@malwr
🗣digicat
🎖@malwr
Welivesecurity
OilRig’s Outer Space and Juicy Mix: Same ol’ rig, new drill pipes
ESET researchers document OilRig’s Outer Space and Juicy Mix campaigns, targeting Israeli organizations in 2021 and 2022
The aggressor is using cyberattacks for informational special operations against Ukraine’s partners to undermine the support of our country
🗣digicat
🎖@malwr
🗣digicat
🎖@malwr
cip.gov.ua
Державна служба спеціального зв’язку та захисту інформації України
Вебсайт Державної служби спеціального зв’язку та захисту інформації України
Microsoft Azure Sentinel: Adding TLPs (Traffic Light Patterns) to Incidents, Alerts and Analytics Rules
Basic and quick write up I did for a client. Figured might be useful for someone.
https://medium.com/@truvis.thornton/microsoft-azure-sentinel-adding-tlps-traffic-light-patterns-to-incidents-alerts-and-analytics-f05e0b2f171e
🗣thattechkitten
🎖@malwr
Basic and quick write up I did for a client. Figured might be useful for someone.
https://medium.com/@truvis.thornton/microsoft-azure-sentinel-adding-tlps-traffic-light-patterns-to-incidents-alerts-and-analytics-f05e0b2f171e
🗣thattechkitten
🎖@malwr
Medium
Microsoft Azure Sentinel: Adding TLPs (Traffic Light Protocol) to Incidents, Alerts and Analytics…
Just like we label documents, it would be nice to label incidents or rules with the TLP so people instantly know if something can or can’t…
Malware News pinned «Guys with premium telegram account, boost please: https://t.me/malwr?boost»
How to Get a Reverse Shell on macOS Using A Flipper Zero as a BadUSB
🗣cybersourcenews
You plug it in.
👤One_Doubt_75
🎖@malwr
🗣cybersourcenews
You plug it in.
👤One_Doubt_75
🎖@malwr
Affordable SIEM labs/learning
Besides setting up a home lab to learn SIEM tools, are there pre-made SIEM labs one can purchase? More importantly, any Splunk training available that are not from Spunk? Which SIEM tools should one focus on? Apologies if this was similarly asked.
🗣greytrain09
Elasticsearch has a nice huge swath of FREE to use
👤sirrush7
Immersive labs have splunk and elastic
Blue team level 1 uses splunk
Titan labs do ArcSight
👤Reverse_Quikeh
🎖@malwr
Besides setting up a home lab to learn SIEM tools, are there pre-made SIEM labs one can purchase? More importantly, any Splunk training available that are not from Spunk? Which SIEM tools should one focus on? Apologies if this was similarly asked.
🗣greytrain09
Elasticsearch has a nice huge swath of FREE to use
👤sirrush7
Immersive labs have splunk and elastic
Blue team level 1 uses splunk
Titan labs do ArcSight
👤Reverse_Quikeh
🎖@malwr
Reddit
From the cybersecurity community on Reddit
Explore this post and more from the cybersecurity community
Malware News pinned «Guys with premium telegram account, boost please: https://t.me/malwr?boost»
An open source list of malicious domains. Updating in real time.
If you are interested, you can contribute the project.
https://github.com/scafroglia93/blocklists
ℹ️ Sent from one of our channel members
🎖@malwr
If you are interested, you can contribute the project.
https://github.com/scafroglia93/blocklists
ℹ️ Sent from one of our channel members
🎖@malwr
GitHub
GitHub - scafroglia93/blocklists
Contribute to scafroglia93/blocklists development by creating an account on GitHub.
👍2