Backdooring Your Backdoors - Another $20 Domain, More Governments After the excitement of our .MOBI research, we were left twiddling our thumbs. As you may recall, in 2024, we demonstrated the impact of an unregistered domain when we subverted the TLS/SSL CA process...

Crack up read from the WATCHTOWR team, highly recommend for an educational giggle.

labs.watchtowr.com/more-governm...

😂

Be Kind, Rewind... The USN Journal YouTube video by 13Cubed

Happy New Year! 🎉🥳 The first 13Cubed episode of 2025 is here! Let's explore some groundbreaking research from CyberCX on “rewinding the NTFS USN Journal.” www.youtube.com/watch?v=GDc8... #DFIR

I made a windows #DFIR artifacts collection MindMap, it's tough to fit everything into a readable overview (might change later)

Agreed 😄 please refer to the “actually interesting to read content” part of that sentence.

Hey Harlan, are you using flat files for timelines or host analysis?

CrowdStrike Services Releases Free Incident Response Tracker This blog post provides an overview of the newly released CrowdStrike Incident Response Tracker and how it is leveraged by our experts on the front lines.

How do you track DFIR timelines and findings? There doesn't seem to be a one size fits all solution in the industry.

Most commonly used are still spreadsheets, where Crowdstrike actually released a pretty nice IR Tracker template a while ago: www.crowdstrike.com/en-us/blog/c...

OneNote or Microsoft Loop for triage and deeper dive host analysis 🕵️‍♂️

A slightly modified version of the CrowdStrike Excel Sheet. Aurora IR is an option but I prefer the excel imo

I jest 😂

Where about was this? Planning a surf trip 🌊 I’ve had penguins and seals in NZ but no dolphins… yet

So, the other day I started to whisper and my wife asked why I was whispering? I told her I didn't want Mark Zuckerberg to hear us.
I laughed.
My wife laughed.
Alexa laughed.
Siri laughed.

a soldier in a helmet sits in the snow ALT: a soldier in a helmet sits in the snow

Them Bastogne episodes hit different… I may need to join ya

Can’t beat a good ankle nut

What’s the suggested alternative in your opinion? Agreed Google sucks

Godspeed brave man 🙏

iykyk… 👀

Image of a variety of knives all labeled with a different type of material they are designed for cutting like Ham, Bread, Cheese, etc. At the bottom of the image is a light saber labeled "For people that don't use UTC for logging"

#DFIR #DFIRHumor

Getting injected 💉

Sir please! Some respect.

Ojai Catching Flies, The West Green Quartet · Ojai · Song · 2024

open.spotify.com/track/25Ozqe...

Getting through ya Monday floating on a cloud listening to this 🌌

Pretty much 🍤

“Genshin Impact” has entered the chat…

That little countdown on 2FA apps stresses the shit out of me. I feel like I'm diffusing a bomb.

If it gets into the red, I just wait. I can't handle the stress.

Tbh screw starter packs… this is the way