Roberto MartΓ­nez's Avatar

Roberto MartΓ­nez

@r0bertmart1nez.bsky.social

Practice Lead @ Bulletproof/GLI | EU CyberNet Cybersecurity Expert | CTI | Threat Hunting | DFIR | Purple Teaming | Keynote Speaker |Professor | Author πŸ‡²πŸ‡½πŸ‡¨πŸ‡¦

263 Followers  |  339 Following  |  22 Posts  |  Joined: 18.11.2024  |  1.6313

Latest posts by r0bertmart1nez.bsky.social on Bluesky

Excited to share that I'll be speaking at MCTTP 2025 in Munich, Germany πŸ‡©πŸ‡ͺ, from September 17 to 19 www.mcttp.de?utm_source=S.... This event fosters innovation, collaboration, and idea exchange. Grateful for the opportunity to contribute! #MCTTP2025 #PurpleTeaming

06.06.2025 18:10 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Enjoy!

26.05.2025 19:49 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Que buen juego!!! πŸ‘πŸ»πŸ’πŸ‡¨πŸ‡¦

21.02.2025 05:02 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

MEIOC

#Python automation tool to extract information from EML files:

Headers
Detailed server relay hops (IP addresses involved)

Extracted URLS/domains
Attachments with calculated hashes.

SPF (Sender Policy Framework)
DKIM (DomainKeys Identified Mail)

github.com/drego85/meioc

10.01.2025 22:47 β€” πŸ‘ 18    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0
Preview
FIRSTCON24 - YouTube 36th Annual FIRST Conference "BRIDGING SECURITY RESPONSE GAPS" For more information on the conference and access to materials, please visit https://www.first...

Talks from the FIRSTCON 2024 security conference, which took place in June, areΒ available on YouTube

www.youtube.com/playlist?lis...

01.01.2025 17:30 β€” πŸ‘ 12    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0

It’s not the best place to live now, believe me.

16.12.2024 14:06 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
7 Bluesky settings tweaks that make the popular X alternative even better If you've migrated from X to Bluesky like the millions of others, here are a few ways to make the experience as wonderful (and drama-free) as possible.

7 Bluesky settings tweaks that make the popular X alternative even better https://www.zdnet.com/article/7-bluesky-settings-tweaks-that-make-the-popular-x-alternative-even-better/

16.12.2024 12:42 β€” πŸ‘ 5    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Post image

πŸš€ New Updates for the EDR Telemetry Project! πŸ›‘οΈ

We’ve rolled out a series of exciting improvements to the EDR Telemetry Project, and there’s so much to explore. Let's dive into these updates πŸ‘‡

πŸ”— Check out the full details and get involved here: kostas-ts.medium.com...

1/X

13.12.2024 22:12 β€” πŸ‘ 7    πŸ” 3    πŸ’¬ 1    πŸ“Œ 0
Preview
ATT&CKcon 5.0 - YouTube

ATT&CKCon 5.0 videos and slides are up! Dig in to this year's presentations here:

πŸ“½οΈ www.youtube.com/playlist?lis...
πŸ“„ www.slideshare.net/MITREATTACK/...

13.12.2024 15:00 β€” πŸ‘ 5    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
GitHub - microsoft/markitdown: Python tool for converting files and office documents to Markdown. Python tool for converting files and office documents to Markdown. - microsoft/markitdown

Microsoft's MarkItDown

The MarkItDown library is a utility tool for converting various files to Markdown (e.g., for indexing, text analysis, etc.)

Repo: github.com/microsoft/ma...

12.12.2024 21:56 β€” πŸ‘ 59    πŸ” 13    πŸ’¬ 4    πŸ“Œ 1
Preview
GitHub - KasperskyLab/hrtng: IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations - KasperskyLab/hrtng

Kaspersky has open-sourced hrtng, its internal IDA Pro plugin used for various malware reverse-engineering tasks

github.com/KasperskyLab...

05.12.2024 15:57 β€” πŸ‘ 34    πŸ” 11    πŸ’¬ 0    πŸ“Œ 1

Thanks for sharing @theblackgem.net From the security perspective there are a couple of resources pretty interesting design.ros2.org/articles/ros... and arxiv.org/abs/1812.09492

04.12.2024 23:20 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Security = Reducing the risk to an acceptable level for the organization

NIST #Ransomware Risk Management
nvlpubs.nist.gov/nistpubs/ir/20…

04.12.2024 16:48 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

It should work now, please try again :)

03.12.2024 11:42 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Technical Deep Dive: Understanding the Anatomy of a Cyber Intrusion MITRE’s experiences detecting and responding to a nation-state cyber threat actor incident in our research and experimentation network

Technical Deep Dive: Understanding the Anatomy of a Cyber Intrusion medium.com/mitre-engenu...

03.12.2024 02:18 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Quedan pocas horas para que finalice la promociΓ³n de mi curso de eLearning "Respondiendo a Incidentes de Ciberseguridad utilizando Inteligencia de Amenazas" que comienza esta semana.
#DFIR #ThreatIntelligence #ThreatHunting
campus.universit.one/courses/e-IR...

03.12.2024 01:50 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Just a few hours left until the end of the promotion of my eLearning course "Responding to Cybersecurity Incidents using Threat Intelligence" starting this week.
campus.universit.one/courses/e-IR...
#DFIR #ThreatIntelligence #ThreatHunting

03.12.2024 01:46 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
The Curious Case of an Egg-Cellent Resume Key Takeaways Initial access was via a resume lure as part of a TA4557/FIN6 campaign. The threat actor abused LOLbins like ie4uinit.exe and msxsl.exe to run the more_eggs malware. Cobalt Strike and…

Nuevo caso de DFIRreport, como siempre un lujo #DFIR thedfirreport.com/2024/12/02/t...

02.12.2024 11:28 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
Fileless Attacks at a Glance: Weaponizing Powershell & Microsoft Legitimate Apps In this article, you will learn what fileless attacks are, their components, and how to detect, and secure your organization from them

In many cases, attackers hide their activities in plain sight and navigate under the radar undetected. Knowing these techniques and improving the ability to detect them can make all the difference.

#Threathunting #DetectionEngineering #DFIR

medium.com/maltrak/file...

02.12.2024 00:50 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Technique Inference Engine The Technique Inference Engine is a machine learning-powered tool that infers unseen adversary techniques, providing security teams actionable intelligence.

Know your adversary’s next move with the Technique Inference Engine, a machine learning-powered tool that infers unseen adversary techniques, providing security teams actionable intelligence.

#ThreatIntelligence #ThreatHunting #DFIR

mitre-engenuity.org/cybersecurit...

02.12.2024 00:37 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

The future belongs to those who learn more skills and combine them in creative ways.

Robert Greene

29.11.2024 18:32 β€” πŸ‘ 6    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0
Preview
The art and science behind Microsoft threat hunting: Part 1 | Microsoft Security Blog The Microsoft Detection and Response Team incorporates threat hunting as part of its proactive and reactive investigative service offerings.

The art and science behind Microsoft threat hunting: Part 1 www.microsoft.com/en-us/securi...

30.11.2024 18:05 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Storm-0501: Ransomware attacks expanding to hybrid cloud environments | Microsoft Security Blog Microsoft has observed the threat actor tracked as Storm-0501 launching a multi-staged attack where they compromised hybrid cloud environments and performed lateral movement from on-premises to cloud ...

Storm-0501: Ransomware attacks expanding to hybrid cloud environments www.microsoft.com/en-us/securi...

30.11.2024 17:45 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

El tiempo corre, accede a mi curso de eLearning β€œResponding to Cybersecurity Incidents Using Threat Intelligence” en este enlace campus.universit.one/courses/e-IR... una nueva lecciΓ³n cada semana a partir del prΓ³ximo lunes.

30.11.2024 16:56 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

The clock is ticking, get access to my eLearning course "Responding to Cybersecurity Events using Threat Intelligence" in the following link campus.universit.one/courses/e-IR... a new lesson every week starting next Monday.

30.11.2024 16:50 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Definitely the sky is bluer here 😎

29.11.2024 21:29 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
eLearning - Responding to Cybersecurity Incidents Using Threat Intelligence (English) Practical insights into developing an incident response capability through intelligence-based threat hunting

I’m happy to share that for BlackFriday and CyberMonday my elearning course "Responding to Cybersecurity Events using Threat Intelligence" is 90% off, using the code BlackFriday-CyberMonday-2024 in the following link campus.universit.one/courses/e-IR...

28.11.2024 23:07 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
eLearning - Responding to Cybersecurity Incidents Using Threat Intelligence (Spanish) Practical insights into developing an incident response capability through intelligence-based threat hunting

Les comparto que por BlackFriday y CyberMonday mi curso elearning β€œResponding to Cybersecurity Events using Threat Intelligence” estΓ‘ al 90% de descuento, usando el cΓ³digo BlackFriday-CyberMonday-2024 en el siguiente enlace campus.universit.one/courses/e-IR...

28.11.2024 23:06 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Set your alarms! Volexity's Steven Adair will join the Three Buddy Problem pod this week ⏰

27.11.2024 14:39 β€” πŸ‘ 22    πŸ” 4    πŸ’¬ 1    πŸ“Œ 3

@r0bertmart1nez is following 20 prominent accounts