Discover and read the best of Twitter Threads about #forensics

Most recents (23)

What to do if you think someone has hacked you?

A big thread ⬇️
1/10

If the hacker has not yet withdrawn all your money, then try to use whitehat.flashbots.net and withdraw assets to a separate wallet. Revoke approvals at revoke.cash & app.unrekt.net !
2/10

For the best step I suggest contacting amlbot.com/help-you - AML bot is using crystalblockchain.com database. Same with hexens.io (DM mr @Hexen1337 ) - I know these guys and if please contact them and tell you are from me - VIP servise guaranteed.
Read 16 tweets
El Webinar Gratuito: "Explotación con Kali Linux" está disponible en video. #hacking #cybersecurity #redteam #osint #forensics 🔒 reydes.com/d/?q=videos_20…
Muchas Gracias @GogodinezGo por el retweet.
Gracias @RDSWEB por el retweet.
Read 7 tweets
#Webinar Gratuito: "Análisis Forense a Apache". Jueves 2 de Junio del 2022. De 5:00pm a 5:45pm (UTC -05:00). #hacking #cybersecurity #redteam #osint #forensics Registro Libre en: reydes.com/d/?q=eventos
Muchas Gracias @Pumajosel por el retweet al Webinar Gratuito: "Análisis Forense a Apache". Jueves 2 de Junio del 2022.
Gracias @raumunz por el retweet al Webinar Gratuito: "Análisis Forense a Apache". Jueves 2 de Junio del 2022.
Read 11 tweets
El Webinar Gratuito: "Forense Digital a Sistemas Windows" está disponible en video. #hacking #cybersecurity #redteam #osint #forensics 🔒 reydes.com/d/?q=videos_20…
Muchas Gracias @SilenusHack por el retweet.
Gracias @ciberconsejo por el retweet.
Read 11 tweets
Único #Curso Virtual Forense de Redes del año 2022. Domingos 5, 12, 19 y 26 de Junio. De 9:00 am a 12:00 pm (UTC -05:00). #hacking #cybersecurity #redteam #osint #forensics Más información en: reydes.com/d/?q=Curso_For…
Muchas Gracias @JCarlosLV2014 por el retweet al Único Curso Virtual Forense de Redes del año 2022
Gracias @RDSWEB por el retweet al Único Curso Virtual Forense de Redes del año 2022
Read 12 tweets
Finalizamos la cuarta y última sesión del Único Curso Virtual de OSINT - Open Source Intelligence del año 2022. #hacking #cybersecurity #redteam #osint #forensics reydes.com/d/?q=Curso_de_… ¡Muchas Gracias a todos los participantes! Image
Muchas gracias @Infogon por el retweet al Único Curso Virtual de OSINT - Open Source Intelligence del año 2022
Gracias @pyth4gorean por el retweet al Único Curso Virtual de OSINT - Open Source Intelligence del año 2022
Read 11 tweets
Iniciamos la cuarta y última sesión del Único Curso Virtual de OSINT - Open Source Intelligence del año 2022. #hacking #cybersecurity #redteam #osint #forensics reydes.com/d/?q=Curso_de_… Image
Muchas Gracias @MarcosJLpezL1 por el retweet al Único Curso Virtual de OSINT - Open Source Intelligence del año 2022
Gracias @AFroufe por el retweet al Único Curso Virtual de OSINT - Open Source Intelligence del año 2022
Read 11 tweets
Único Curso Virtual Forense de Redes del año 2022. Domingos 5, 12, 19 y 26 de Junio. De 9:00 am a 12:00 pm (UTC -05:00). #hacking #cybersecurity #redteam #osint #forensics Más información en: reydes.com/d/?q=Curso_For…
Muchas gracias @MiguelJimenezMK por el retweet al Único Curso Virtual Forense de Redes del año 2022.
Gracias @carlaSaab777 por el retweet al Único Curso Virtual Forense de Redes del año 2022.
Read 7 tweets
El Webinar Gratuito: "Vulnerabilidades en CMS Web" está disponible en video. #hacking #cybersecurity #redteam #osint #forensics 🔒 reydes.com/d/?q=videos_20… Image
Muchas gracias @Infogon por el retweet.
Gracias @JCarlosLV2014 por el retweet.
Read 6 tweets
Therapist Tip for your #mentalhealth: How to spot a #narcissist We are in a #narcisstic #psychopathic and #sociopathic epidemic. Look for these 🚩🚩1. Mirroring your interests 🚩 2. Love Bombing you at first. Feels like bliss 🚩3. Early obsession. Go too fast in any relationship
Fall in love with you in first week(s). 🚩4. Feels too good to be true 🚩5. They are idealising you & you can do no wrong. You are perfect for them. This is the 'honeymoon' period 🚩6. Them comes drama out of the blue 🚩 7. They come from a position of "how am I?" #psychology
Wanting others attention 🚩They do not care about how you are or how your day was. Do they ever ask you how you are, how was your day, say "that sounds like a tough day for you", show genuine empathy) Watch for 'false' empathy. Does the conversation always go back to them? #narcs
Read 25 tweets
1/ #Linux #Forensics: pssst... I will now reveal my favorite interview question for candidates who want to work in our IR team ;) "In the process list, I see a (running) binary, but the binary is no longer present on disc. How can I restore the original binary? (screenshot 👇)" Image
2/ Many candidates (and other analysts) I have spoken to did not know the (simple?) answer.

Under /proc/[pid]/exe, a 1:1 copy of the executed binary is stored! As you can see in the screenshot, the hash sums of both binaries match precisely. Image
3/ According to the proc(5) manpage:

"You can even type /proc/[pid]/exe to run another copy of the same executable that is being run by process [pid]."
Read 4 tweets
List of Hacking and Forensic Investigation Tools for IT Security Expert:

( Be a Hacker )

// Thread

#infosec #thesecureedge #cybersecurity #hacking #forensics #tech #thread #linux #bugbounty #DigitalTransformation
Read 14 tweets
Reversed Male/Female Gait:
King Abdullah II of Jordan. Vs Jacinda Ardern, STAIRS.

Try this at home. #csi #forensics
Illuminati enough for you ? ImageImage
Reversed Male/Female Gait: Vladimir Putin, President of Russia
Vs *Angela Merkel, Former Chancellor of Germany , STAIRS.

*Body filler ops can't hide that straight male stride ability on AM.

Try this at home. #csi #forensics
Illuminati enough for you ? ImageImage ImageImage
Reversed Male/Female Gait:
Pedro Sánchez, Prime Minister of Spain. Vs María Begoña Gómez Fernández, STAIRS.

(Same ppl - two different occasions)

Try this at home. #csi #forensics
Illuminati enough for you ? ImageImage
Read 16 tweets
3rd workshop on Artificial Intelligence Diversity, Belonging, Equity, and Inclusion (AID BE I) at #AAAI: a livetweet thread by @banazir

#DiversityInAI #DiverseInAI
@RealAAAI @WiMLworkshop @black_in_ai @_LXAI @QueerinAI @AiDisability #IndigenousInAI
@wimlds @BlackWomenInAI

1/🧵 Screenshot: Zoom attendees ...
Welcoming remarks from @banazir:

There will again be a special issue of Proceedings of Machine Learning Research (#PMLR, an imprint of @JmlrOrg's Journal of #MachineLearning #research) on this workshop.

Video recordings of the workshop will be at DiverseInAI.org.

2/🧵
First presentation: "Hello* - A Beginner's Guide to the Conference Galaxy" - Bethany Chamberlain, Dovile Juodelyte and Veronika Cheplygina

@chamberlain_ba @DrVeronikaCH

Great use of @Mentimeter!

3/🧵 Screenshot of cover slide a...
Read 69 tweets
What Does Vladimir Putin Have on Joe Biden? Joe and Hunter Biden’s seedy involvements in Ukraine may have given the Russian leader all the ‘kompromat’ he needs to keep America at bay! 🔍 Tablet Magazine #Cybersecurity #Forensics #NatSec tabletmag.com/sections/news/…
Vladimir Putin didn’t need the green light that Joe Biden gave Russian forces during his marathon press conference last Thursday for a “minor incursion” into Ukraine. The Russian president already knew the U.S. commander in chief couldn’t stop him even if he wanted to.
You don’t need a secret dossier authored by a British ex-spy for hire like Christopher Steele to understand the possible weird real-world mirror version of Russiagate. This time, it’s basically all out in the open—or at least it was …
Read 5 tweets
Dealing with a bunch of memory #forensics lately so I just dump fairly new tools that are useful to all #dfir #incidentresponse out there:
MemProcFS - convenient and easy to use
BulkExtractor - extracts everything into a text file and grep it
SuperMem - CS tool for quick triage
Read 4 tweets
Today I started compiling a list of twitter accounts of online media who write articles on #hacking, #cybersecurity, #pentest, #forensics, #osint etc

twitter.com/i/lists/144346…

In this thread🧵 I will tell you what project is behind each account on this list
@PenTestMag The online magazine devoted to penetration testing and IT security assessment pentestmag.com
@thehackersnews The most trusted, widely read, independent source for breaking news and tech coverage on #cybersecurity, #infosec, #hacking. thehackernews.com
@magcybersec Cybersecurity for everyone cybersecurity-magazine.com

@CyberSecurityM8 Source for cyber security news all around the globe cybersecuritymagazine.com
Read 15 tweets
Daily Bookmarks to GAVNet 11/07/2020 greeneracresvaluenetwork.wordpress.com/2020/11/07/dai…
Scientists work to shed light on Standard Model of particle physics

phys.org/news/2020-11-s…

#light #particle #physics
How US Presidential Elections Are Impacted By Geology

forbes.com/sites/davidbre…

#geology #elections
Read 8 tweets
#forensics #toxicology
As requested, here are some suggestions/pearls regarding toxicology
@anueru432 @AnthraxRipple @bex674 @DrSidSeth @YuRoFi @MComptonMD @CollOrduna
#tweetorial
1. For collection, do not perform blind sticks of heart (i.e., through the chest wall)...

1/12
...you might hit stomach. Subsequent analysis will reveal drug concentrations that do not reflect what was in blood.
2. While subclavian sticks are more acceptable, be wary of hitting airway-regurgitated stomach contents can be present in airway.

2/12
3. Gray top tubes contain sodium fluoride, which prevents postmortem breakdown of some drugs-I have tested antemortem blood (in red top) from hospital which was negative for cocaine and postmortem blood (in gray top) from same individual was positive

3/12
Read 12 tweets
All calm now at scene of earlier shooting in #Thailand #Bangkok. #Shooter is said to be 44-years-old. Owns a sportswear shop. Neighbours & a nephew claim he's a good & friendly guy. They don't believe he has any financial issues because he just renewed shop rental #ยิงกลางกรุง ImageImageImage
#Thailand #Bangkok #Forensics team still on #shooting site where a man shot randomly early Friday morning. No injuries reported. #ยิงกลางกรุง. This shooting comes barely a week since last one in #koratshooting #KoratStrong where a rouge soldier killed 29, injured almost 60
Police sealed off back of shop/house where #Thailand #Bangkok #shooter was holed up before giving himself up to police #ยิงกลางกรุง. Investigations ongoing. Neighbours say they didn't know he had a gun. They speculate it could be due to stress as shops are not making any money ImageImageImageImage
Read 8 tweets
Let's go step-by-step and do some basic live process forensics for #Linux. Today's contestant is a bindshell backdoor waiting for a connection on Ubuntu. We saw something odd when we ran:

netstat -nalp

#DFIR #threathunting #forensics
netstat -nalp shows a process named "x7" PID with a listening port that we don't recognize. #DFIR Image
First thing we'll do is list out /proc/<PID> to see what is going on. Our PID is 5805:

ls -al /proc/5805

The current working directory is /tmp. The binary was in /tmp, but was deleted. A lot of exploits work out of /tmp and /dev/shm on Linux. This is a major red flag. #DFIR Image
Read 13 tweets
ImageImageImage
Any word from the @statedeptspox on the US Amb escorted by a tainted cop recently caught. Who are his higher ups?
According to local reports he admitted helping people get on flights.
Just like they do at major US airports @FBI knowingly ignoring crucial tips. @CIA @mikepompeo
Read 4 tweets
Here's how to recover a #Linux binary from a malicious process that has deleted itself from the disk.

cp /proc/<PID>/exe /tmp/recovered_bin

Let's see how this works. #DFIR #threathunting #forensics
Often, malware deletes itself after it starts so file scanners and integrity checks won't find it. It can make analysis harder if you can't get to the binary easily.

But if you remember /proc/<PID>/exe you can recover any deleted binary.

#DFIR #threathunting #forensics
Use the sleep command to simulate a deleted process:

cd /tmp
cp /bin/sleep x
./x 3600 &
[1] 32031
rm x

This copies the sleep command as "x" under /tmp and runs for 3600 seconds. Then, delete "x" so the binary appears removed. Practice on it.

#DFIR #threathunting #forensics
Read 7 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!