I've released an open-source PowerShell tool for Windows Server Security Audits.
Features
โ
Alignment with EUs NIS2 (Art. 21)
โ
Maps to MITRE ATT&CK & CIS v8
โ
Weighted Risk Scoring & HTML/JSON Reports
I'd love to have your feedback!
๐ https:https://github.com/cyb3rint3l-labs/ServerSecurityAudit
๐๐ฎ๐๐ ๐ฐ๐ต๐ฎ๐ป๐ฐ๐ฒ ๐๐ผ ๐๐๐ฟ๐ป ๐ถ๐ ๐ผ๐ณ๐ณ!
#linkedin #aitraining #dataprotection
youtube.com/shorts/CQ-Pd...
๐ What youโll learn in this video:
- How to use Process Monitor for real-time file, registry, and process activity
- How to leverage Autoruns to detect malware persistence and TCPView for network connections
- How to combine these tools to get actionable Threat Intelligence
In this second part of the "Threat Hunting with Sysinternals" series, designed for SOC Analysts, Blue Teamers and System/Network administrators, we explore Process Monitor, Autoruns and TCPView.
youtu.be/VgWSUKVUUfU
Largest NPM supply chain attack in history. Attackers compromised 18 core JavaScript packages with 2+ billion weekly downloads after phishing a maintainer. Malware targets crypto wallets & steals credentials. Millions of developers affected worldwide www.aikido.dev/blog/npm-deb...
#ESETResearch has discovered the first known AI-powered ransomware, which we named #PromptLock. The PromptLock malware uses the gpt-oss:20b model from OpenAI locally via the Ollama API to generate malicious Lua scripts on the fly, which it then executes 1/7
The new Bloodhound version has some genuinely crazy cool new features -- OpenGraph really blows the doors off the potential for Bloodhound to not just map attack paths within Microsoft Active Directory or Entra ID tenants, but now... ANYTHING ๐คฉ youtu.be/kVOjXGbm_Ro
SpiderFoot is one of the tools I've used most in my OSINT journey so far.
I highly recommend it!
#osint #cyb3rint3l #cybersecurity #osintseries #digitalfootprint #infosec #spiderfoot #reconnaissance #shodan #virustotal
CISA openโsources Thorium malware forensic platform.
https://deadstack.net/cluster/11364
๐๐ฅ Stories follow in replies.
#tech #opensource #infosec #government #cybersecurity
No six-figure #cybersecurity solution will save you if:
โ You haven't trained your users
โ You save RDP credentials on the client
โ Force UNC paths to remember login details
โ You lack a Patch Management strategy
โ You are not incorporating Monitoring
โ You assume you are too small to be hit
LOL
Thanks!
Lovely!
โ
Learn practical skills to uncover hidden threats, analyse suspicious processes & understand how processes work and behave behind the scenes.
You will also discover how to preserve critical forensic evidence and learn to easily obtain file hashes in both Windows and Linux through the command line.
๐ฌ How can we analyse a Windows system for malware while making sure to preserve crucial forensic evidence?
Join me in the 1st part of this three-part Threat Hunting series, where I delve into Process Explorer, showing how we can further expand our DFIR arsenal by fine-tuning this Sysinternals tool.
A thorough day-by-day write-up on the ongoing conflict. It is worth reading to understand how cyber operations not only affect but could at times play a decisive role in the course of events.
socradar.io/reflections-...
a case study in how rushing innovation without stability (or security) can backfire. For some, it was their first foray into home movies & CD burning.
#VintageTech #Nostalgia #WindowsHistory #ThrowbackTuesday #RetroTech #VintageComputing
๐พ Windows ME (meeehhh...)
Windows Millennium Edition, or ME, arrived in 2000, aiming to bring multimedia & home computing together.
It brought System Restore, digital media support, faster boot times, but also bugs &headaches.
Often criticised as one of MS's weakest releases, ME became (1/2)
worms & exploits:
CIH (Chernobyl), ILOVEYOU & Melissa all found a fertile playground.
A milestone that blended reliability with innovation (and some BSODs!). (2/2)
#VintageTech #Nostalgia #WindowsHistory #ThrowbackTuesday #RetroTech #VintageComputing
๐ Windows 98: Where the internet and PC became one
Released in 1998, Windows 98 refined the Win 95 experience with better hardware support, the Quick Launch bar & the Active Desktop.
It was the OS where the early web took off, with IE embedded.
But it was also the golden age for viruses (1/2)
modern computing era.
For many, it was their first plunge into the digital world, making computing personal, accessible and exciting.
#VintageTech #Nostalgia #WindowsHistory #ThrowbackTuesday #RetroTech #VintageComputing
๐ฅ๏ธ Windows 95: The OS that changed it all
Building on the foundation set by Windows 3.1, which introduced many to GUIs, Windows 95 launched in 1995 and took digital innovation to new heights.
With the iconic Start button and Plug-and-Play simplicity, Windows 95 opened the gateway to the (1/2)
networking and internet use began to grow.
Still, it was the OS that made many, including me, fall in love with Windows.
#VintageTech #Nostalgia #WindowsHistory #ThrowbackSaturday #RetroTech #VintageComputing
๐ฝ There came Windows 3.1
Arriving in 1992, Windows 3.1 introduced millions to the world of GUIs with its polished look, iconic Program Manager, TrueType fonts and... Minesweeper!๐ฃ
It made computing colourful, structured, and... fun.
But it also saw early vulnerabilities emerge as (1/2)
with multitasking.
From Word to Excel, Windows 2.0 nudged the world closer to GUI-driven productivity. (2/2)
#VintageTech #Nostalgia #WindowsHistory #ThrowbackTuesday #RetroTech #VintageComputing
๐๏ธ Then came Windows 2.0
Released in 1987, Windows 2.0 introduced overlapping windows, desktop icons & better graphics support, making the interface more dynamic.
It powered early business applications & famously introduced keyboard shortcuts still used today. For many, it was their 1st time (1/2)
Wild.
Sure, that goes without saying.
Update: It appears some offshore employees supporting Coinbase were bribed to help or ease cybercriminals to perform the attack. Thanks to @dawisco.bsky.social for pointing this out.
