iEmoji.com The Emoji Keyboard for the Computer
Previous page Next page

iEmoji Feeds @The DFIR Report (TheDFIRReport)

1.

TheDFIRReport
The DFIR Report @TheDFIRReport
2022 Year in Review

Most common TTPs we saw in 2022
Trends around IAB's
Top detections
Ransomware propagat… twitter.com/i/web/status/1…
06 Mar 23 copy & paste +upvote -downvote 2022 Year in Review ➡️Most common TTPs we saw in 2022 ➡️Trends around IAB's ➡️Top detections ➡️Ransomware propagat… https://t.co/Gwcj3iQOjL

2.

TheDFIRReport
The DFIR Report @TheDFIRReport
Our Year in Review 2022 report will be out Monday March 6th!

We'll be discussing the most common TTPs we reported… twitter.com/i/web/status/1…
02 Mar 23 copy & paste +upvote -downvote Our Year in Review 2022 report will be out Monday March 6th!🥳 We'll be discussing the most common TTPs we reported… https://t.co/KHKhfyfvCv
3.
TheDFIRReport
The DFIR Report @TheDFIRReport
For those looking to understand what makes a good report, @TheDFIRReport is a great example! I the break down, d… twitter.com/i/web/status/1…
Retweet of status by @coolestcatiknow
07 Feb 23 copy & paste +upvote -downvote For those looking to understand what makes a good report, @TheDFIRReport is a great example! I 😻 the break down, d… https://t.co/l214JpyHeE
4.
TheDFIRReport
The DFIR Report @TheDFIRReport
Unwrapping Ursnifs Gifts

Initial Access: Ursnif ISO/LNK/DLL
Discovery: Get-ADComputer, nltest, net view, etc.… twitter.com/i/web/status/1…
Retweet of status by @TheDFIRReport
16 Jan 23 copy & paste +upvote -downvote Unwrapping Ursnifs Gifts ➡️Initial Access: Ursnif ISO/LNK/DLL ➡️Discovery: Get-ADComputer, nltest, net view, etc.… https://t.co/2iP6uhgUVx
5.
TheDFIRReport
The DFIR Report @TheDFIRReport
BumbleBee: Round Two

Initial Access: Bumblebee ISO>LNK>DLL
Persistence: AnyDesk, Added Local Admin
Discover… twitter.com/i/web/status/1…
26 Sep 22 copy & paste +upvote -downvote BumbleBee: Round Two ➡️Initial Access: Bumblebee ISO>LNK>DLL ➡️Persistence: AnyDesk, Added Local Admin ➡️Discover… https://t.co/t1y0BlynGS
6.
TheDFIRReport
The DFIR Report @TheDFIRReport
Interesting #CobaltStrike server:

downloadupdater[.]com
reg via Namecheap
46.161.27.133
Hosted @ Megah… twitter.com/i/web/status/1…
22 Aug 22 copy & paste +upvote -downvote Interesting #CobaltStrike server: ➡️downloadupdater[.]com ➡️➡️reg via Namecheap ➡️46.161.27.133 ➡️➡️Hosted @ Megah… https://t.co/jIAStC0iEl
7.
TheDFIRReport
The DFIR Report @TheDFIRReport
Are you going to @Steel_Con Saturday (7/23)? If so,

Check out @_pete_0's talk "Can you detect this? Inside The R… twitter.com/i/web/status/1…
Retweet of status by @TheDFIRReport
22 Jul 22 copy & paste +upvote -downvote Are you going to @Steel_Con Saturday (7/23)? If so, ➡️Check out @_pete_0's talk "Can you detect this? Inside The R… https://t.co/nuehgVdebY
8.
TheDFIRReport
The DFIR Report @TheDFIRReport
SELECT XMRig FROM SQLServer

Initial Access: Brute Force
Execution: xp_cmdshell, batch scripts, certutil
Pers… twitter.com/i/web/status/1…
11 Jul 22 copy & paste +upvote -downvote SELECT XMRig FROM SQLServer ➡️Initial Access: Brute Force ➡️Execution: xp_cmdshell, batch scripts, certutil ➡️Pers… https://t.co/AUMat4tzZ6
9.
TheDFIRReport
The DFIR Report @TheDFIRReport
Wearing @TheDFIRReport summer outfit. Thanks @Kostastsale and all team for the gift!
Retweet of status by @jc_vazquez
09 Jul 22 copy & paste +upvote -downvote 🏖 Wearing @TheDFIRReport summer outfit. Thanks @Kostastsale and all team for the gift! 😎👌 https://t.co/qQiAAHFCOL
10.
TheDFIRReport
The DFIR Report @TheDFIRReport
Here's some newer #CobaltStrike servers we're tracking:

update06[.]microsoft-essentials[.]com
dhpn9qfz6r4lh[.]… twitter.com/i/web/status/1…
10 Jun 22 copy & paste +upvote -downvote Here's some newer #CobaltStrike servers we're tracking: ➡️update06[.]microsoft-essentials[.]com ➡️dhpn9qfz6r4lh[.]… https://t.co/iCUXNaLNRK
11.
TheDFIRReport
The DFIR Report @TheDFIRReport
Will the Real Msiexec Please Stand Up? Exploit Leads to Data Exfiltration

Initial Access: CVE-2021-44077 exploit… twitter.com/i/web/status/1…
Retweet of status by @TheDFIRReport
13 Jun 22 copy & paste +upvote -downvote Will the Real Msiexec Please Stand Up? Exploit Leads to Data Exfiltration ➡️Initial Access: CVE-2021-44077 exploit… https://t.co/Cg5q0LJnOR

...but wait! There's more!

Learn more about the Emoji Keyboard
Yeah!

Find the meaning of an Emoji

View the Most Popular

1.

fakhright
fakhright @fakhright
astaghfirullah peng.krim guaaaaaaaa..............a *salto sambil solat*
14 Jan 13 copy & paste +upvote -downvote astaghfirullah peng.krim guaaaaaaaa..............a *salto sambil solat* 🙈🙈🙊
Previous page Next page
Loading
Copyright © 2010-2024 iEMOJI Questions? Contact: eric.iemoji@gmail.com
https://www.iemoji.com/feed/TheDFIRReport
Back to top