Tom Claflin 🀠's Avatar

Tom Claflin 🀠

@cyberyom.bsky.social

Security Researcher The Leahy Center | Cyber5W

24 Followers  |  30 Following  |  12 Posts  |  Joined: 15.11.2024  |  1.9547

Latest posts by cyberyom.bsky.social on Bluesky


Post image

T-Warz is our new CTF going live at TechnoSecurity East this year! This isn’t your ordinary CTF, it’s a #Cyberwarzone! If you’re up for a challenge, join us. Don’t miss out! #DFIR #Cybersecurity #CTF

www.technosecurity.us/east/confere...

03.01.2025 17:49 β€” πŸ‘ 5    πŸ” 7    πŸ’¬ 1    πŸ“Œ 0

#dfir #DF #linux #cybersecurity

29.11.2024 17:46 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Specifically, around line 800, curl commands querying usernames, kernel details, environment variables, among a few other things.

This is a perfect example of why people need to understand how the tools they use work. Why folks need to be only getting their tools from trusted sources.

(2/2)

29.11.2024 17:35 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

The linpeas.sh is the perfect example why folks need to be vetting their tools.

There was a sample of this script being distributed through a third party webapp, where it had been modified to include some suspicious enumeration techniques, and sent them back to a remote server.

(1/2)

29.11.2024 17:33 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0
Post image

🚨 Upcoming Webinar Alert! 🚨

Join us on Dec 4th, 12 PM ET for Windows Forensic Investigation! Explore Windows artifacts & techniques critical for DFIR investigations. Perfect for investigators & forensic pros!

🎯 Don’t miss it; register now: bit.ly/c5w-webinar4
#DFIR #Cyber5W

29.11.2024 17:13 β€” πŸ‘ 4    πŸ” 1    πŸ’¬ 0    πŸ“Œ 1

Correction: OST2 is more about malware and RE, but C5 offers content on windows, Linux, malware, and more

29.11.2024 16:46 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

These ones would be more on the RE/malware side, but OpenSecurityTraining2 is awesome, and totally free.

You can also check cyber5w’s website. We offer multiple labs that are pay-what-you-can at labs.cyber5w.com, as well as cheaper trainings at academy.cyber5w.com.

29.11.2024 16:44 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Ali Hadi, Ph.D. Dr. Ali Hadi personel website

If you want some free labs for sharpening your DF and IR tools, you should check here!

www.ashemery.com/dfir.html

29.11.2024 16:01 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Ohhh, this looks super cool. It looks like our tools would go very well together!

28.11.2024 17:53 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I love this one 🀠

28.11.2024 16:19 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

#dfir #digitalforensics #NTFS

28.11.2024 15:22 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
GitHub - cyberyom/MFTAnalyzer: This tool is meant to parse an NTFS $MFT file. This tool is meant to parse an NTFS $MFT file. Contribute to cyberyom/MFTAnalyzer development by creating an account on GitHub.

One year ago today, I started my first contribution to the DFIR community.

It was a tool to parse the NTFS $MTF file. I wrote it to solve problems I had with other GUI based tools, though this is CLI.

If you’d like to check it out, you can find it on my github!
github.com/cyberyom/MFT...

28.11.2024 13:43 β€” πŸ‘ 18    πŸ” 4    πŸ’¬ 2    πŸ“Œ 0

How did you image the watch? Did you get one of those pogo pin connectors? I think they’re called iBus.

28.11.2024 12:57 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
yoda eyes closed. digital forensics examiner understood why Yoda died after answering all of lukes questions.

yoda eyes closed. digital forensics examiner understood why Yoda died after answering all of lukes questions.

It's been one of those weeks.

#DigitalForensics #MobileForensics #DFIR

15.11.2024 11:54 β€” πŸ‘ 10    πŸ” 3    πŸ’¬ 1    πŸ“Œ 0

Let’s see what this is all about…

15.11.2024 01:02 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0

@cyberyom is following 19 prominent accounts