Posts by og@infosec.exchange
(DIR) Post #9mxf3xnjaqdJGKxbqi by og@infosec.exchange
2019-09-15T22:57:39Z
0 likes, 1 repeats
What's the best Android client for Mastodon?
(DIR) Post #9mxjiO3zlmoO7665q4 by og@infosec.exchange
2019-09-15T23:50:11Z
0 likes, 1 repeats
I'm a cybersecurity guy with a decade of experience in risk management and DFIR. I did come up through half a decade of endpoint support and firewall administration, so I've got a bit of an IT operations background, which I take every opportunity to abuse in my threat hunting activities...Outside of *that*, I'm a husband, a father, and a fair-weather motorcycle rider. My music tastes can be summarized by "not country". I'm fluent in three languages.👋
(DIR) Post #9mxjlWjVzbILs30zUO by og@infosec.exchange
2019-09-15T23:54:04Z
0 likes, 0 repeats
@jerry thank you!
(DIR) Post #9n20xTEFK5WCKXVfaC by og@infosec.exchange
2019-09-17T23:49:46Z
0 likes, 1 repeats
Does anybody have any good sources on the average length of encoded malicious PowerShell commands? Linked paper seems to suggest a 300 character mark, which seems low. https://arxiv.org/pdf/1804.04177.pdf
(DIR) Post #9n228gyycwtQ7tHa5o by og@infosec.exchange
2019-09-18T01:38:47Z
0 likes, 0 repeats
@jerry @mistaken113 term "charge back" comes to mind.
(DIR) Post #9n3KK8GNX05gFozEcy by og@infosec.exchange
2019-09-18T16:37:15Z
0 likes, 0 repeats
@jerry @dl1mur4tdj "Hi, this is the CFO calling, you're about to receive an email with a request for a confidential wire transfer, please process immediately. Thanks."
(DIR) Post #9n3V0Qn62EaFQA6ASW by og@infosec.exchange
2019-09-18T17:18:31Z
0 likes, 3 repeats
Handy tool: dnstwist - generates a list of typo-squatting variations of your domain and checks to see if they are registered. Has some additional functionality to check mail servers and page hashes to identify phishing opportunities:https://github.com/elceef/dnstwist
(DIR) Post #9n6KphCAGqmav9RDg8 by og@infosec.exchange
2019-09-20T03:27:04Z
0 likes, 0 repeats
@jerry probably a couple of years before lobbyists from marketing companies explain to them what DNS over HTTPS is and why it's hurting the economy.
(DIR) Post #9n6KyapvHWypo1HFeC by og@infosec.exchange
2019-09-20T03:28:42Z
0 likes, 0 repeats
@jerry @nbering Yes. And DNS over HTTPS providers will too. Google and Cloudflare aren't doing this out of the goodness of their heart. If the product is free, you are the product.
(DIR) Post #9n9db0V8grM33au0sC by og@infosec.exchange
2019-09-21T17:41:30Z
0 likes, 0 repeats
@ScottMortimer Yeah but Chrome market share is over 60 percent, while Safari is, what, 15? I bet that most Safari users had no idea that ad blockers even existed to begin with.
(DIR) Post #9qoDzEuVpJAJrpOKjw by og@infosec.exchange
2020-01-09T00:23:21Z
0 likes, 1 repeats
Another crazy "increased vigilance" recommendation from a vendor: "Set policies to alert on new hosts joining the network. To reduce the possibility of ‘rogue’ devices on your network, increase visibility and have key security personnel notified when new hosts attempt to join the network." :blobshock:
(DIR) Post #9son71QObvdvJNibKa by og@infosec.exchange
2020-03-09T03:31:49Z
0 likes, 0 repeats
@r000t @ScottMortimer I think it's the idea of visiting different places without having to endure the absolute agony that is current air travel.
(DIR) Post #AS5QEIaRS4DbsmS47U by og@infosec.exchange
2023-01-28T00:17:10Z
1 likes, 0 repeats
NIST SP 800-63B-1: Change your password every 90 days....NIST SP 800-63B-3: No periodic password change requirements....NIST SP 800-63B-5: Change your password every LastPass breach.
(DIR) Post #ASKDZW5F4wwAnqttPk by og@infosec.exchange
2023-02-04T04:47:43Z
0 likes, 0 repeats
@wjmaggos @mmasnick money, it's money