SANS Cyber Threat Intelligence Summit 2023

Unmasking the Iranian APT COBALT MIRAGE
Lina Lau, Principal Incident ResponseConsultant - APJ South, Secureworks

From operational security failures to a Department of Justice (DOJ) indictment, COBALT MIRAGE likes…

00:00 - Introduction talking a little bit about
00:55 - Using Extension to show a legitimate password reset
01:50 - Modifying the host header and showing the website uses that in the sent email
02:40 - Talking about mail filters auto-clicking links, which…

The Taggart Institute exists to provide low-cost, high-quality technology training to everyone in a welcoming, supportive community.

What a round! 29 teams from 22 countries blitzed in to decide who would reach the next stage of this year’s Ambassador World Cup.

Here we collect and discuss the best DeFi, Blockchain and crypto-related OpSec researches and data terminals - contributions are welcome. - OffcierCia/Crypto-OpSec-SelfGuard-RoadMap

to catch the hacker - follow-up video to https://youtu.be/BWVyp0wYpgA

🔗 Links Mentioned:
https://github.com/telekom-security/tpotce - The All In One Multi Honeypot Platform
https://www.metacompliance.com/blog/phishing-and-ransomware/how-do-hackers-normally…

After doing a number of satellite and radio astronomy experiments, I finally got tired of my old briefcase full of tangled radio gear. I dug through my collection of broken computers, old wires, spare parts, and other junk, and assembled an all-in-one space…

There exist some awesome tools nowadays to accelerate your self-education for reverse engineering. godbolt and dogbolt are amazing to quickly learn basic assembly and reversing.

Compiler Explorer: https://godbolt.org/
Decompiler Explorer: https://dogbolt.org/…

This session features eversinc33 giving an intro to syscalls implementations for Windows malware.

This is a recording from the Prelude Discord Live Stream Series.

Click here to join the Prelude Discord: https://discord.gg/fZbfdUQM4A

This document discusses physical penetration testing as part of a red team assessment. It defines physical penetration testing as evaluating physical security controls and procedures at a target facility. The methodology involves planning and intelligence…

A DNS Client Supporting DNSCrypt, Anonymized DNSCrypt, DoH, DoT, UDP And TCP. Moved to https://github.com/msasanmh/DNSveil - msasanmh/SecureDNSClient

Learn more about a failed extortion scheme against Dragos in May 2023. No Dragos systems were breached, including anything related to the Dragos Platform.

My first attempt at getting images from the Russian "Meteor M2" weather satellite.

More info and step by step instructions for how to do this are here: https://blog.chaospixel.com/linux/2019/12/receive-meteor-satellite-images-with-rtlsdr-gqrx-linux.html…