all InfoSec news for `blueteamsec` | allinfosecnews.com

Macro-level ATT&CK Trends 2020-2023 9 hours ago | www.reddit.com

att blueteamsec macro trends

Free IOC Feeds 1 day, 5 hours ago | www.reddit.com

blueteamsec dns feed free +6

.NET Assembly Obfuscation for Memory Scanner Evasion 1 day, 12 hours ago | www.reddit.com

assembly blueteamsec evasion memory +2

Analysis of Time-to-Exploit Trends: 2021-2022: analyzed 246 vulnerabilities that were exploited between 2021 and 2022. 1 day, 19 hours ago | www.reddit.com

analysis blueteamsec exploit exploited +2

Analyzing a DLL Reverse Shell 1 day, 23 hours ago | www.reddit.com

blueteamsec dll reverse reverse shell +1

NIST Publishes SP 800-82, Revision 3 | Guide to Operational Technology (OT) Security 2 days, 6 hours ago | www.reddit.com

blueteamsec guide nist operational +3

bpftime: Userspace eBPF runtime for fast Uprobe & Syscall hook & Plugins 2 days, 8 hours ago | www.reddit.com

blueteamsec ebpf fast plugins +2

Someone tried baiting people into downloading malware on r/cybersecurity 2 days, 15 hours ago | www.reddit.com

baiting blueteamsec cybersecurity malware +1

How To Deploy a Complete Entra ID Conditional Access PoC in Under 5 Minutes 2 days, 16 hours ago | www.reddit.com

access blueteamsec conditional access deploy +4

iOS 15 Image Forensics Analysis and Tools Comparison - Processing details and general device information 2 days, 16 hours ago | www.reddit.com

analysis blueteamsec device forensics +7

Critical Vulnerabilities in Progress Software WS_FTP Server - exploitable with a single HTTPS POST request … 2 days, 18 hours ago | www.reddit.com

blueteamsec critical critical vulnerabilities exploitation +12

Sub7 source code released - an old code but it checks out 2 days, 19 hours ago | www.reddit.com

blueteamsec code old source code

Using Cloudflare to bypass Cloudflare 3 days, 4 hours ago | www.reddit.com

blueteamsec bypass cloudflare

A Call To Action: Building the Cyber Workforce the Nation Needs | ONCD | The … 3 days, 11 hours ago | www.reddit.com

action blueteamsec call call to action +7

Incident Response Part 1: IR on Microsoft Security Incidents (KQL edition) 3 days, 16 hours ago | www.reddit.com

blueteamsec incident incident response incidents +5

Open-Source Remote Access Trojan Targets Armenian Airport and State Institutions - from Sept 22 3 days, 21 hours ago | www.reddit.com

access airport blueteamsec institutions +4

Lazarus Group Exploits ManageEngine Vulnerability 4 days, 10 hours ago | www.reddit.com

blueteamsec exploits lazarus lazarus group +2

Cisco IOS and IOS XE Software Cisco Group Encrypted Transport VPN Software Out-of-Bounds Write Vulnerability: … 4 days, 19 hours ago | www.reddit.com

blueteamsec cisco cisco ios encrypted +10

DocIntel & MISP - Threat Intelligence Without Boiling the Ocean â Cosive 5 days, 11 hours ago | www.reddit.com

blueteamsec intelligence misp threat +1

Dark River. You can't see them, but they're there 5 days, 14 hours ago | www.reddit.com

blueteamsec dark river

People's Republic of China-Linked Cyber Actors Hide in Router Firmware - The actors have used … 6 days, 8 hours ago | www.reddit.com

blacktech blueteamsec capabilities china +12

From payday to payoff: Exploring the money laundering strategies of cybercriminals - Most of the … 6 days, 9 hours ago | www.reddit.com

addresses blueteamsec cybercriminals laundering +5

A Deep Dive into Brute Ratel C4 payloads – Part 2 6 days, 11 hours ago | www.reddit.com

blueteamsec brute brute ratel brute ratel c4 +3

LDAPWordlistHarvester: A tool to generate a wordlist from the information present in LDAP, in order … 1 week ago | www.reddit.com

accounts blueteamsec crack domain +6

JA4+ Network Fingerprinting 1 week ago | www.reddit.com

blueteamsec fingerprinting network

Everlasting ROBOT: the Marvin Attack - The Marvin Attack is a return of a 25 … 1 week ago | www.reddit.com

attack attacker blueteamsec decryption +8

Spain closes Pegasus investigation over ‘lack of cooperation’ from Israel 1 week ago | www.reddit.com

blueteamsec cooperation investigation israel +2

RedPersist: RedPersist is a Windows Persistence tool written in C# 1 week ago | www.reddit.com

blueteamsec persistence tool windows +1

Using silent SMS to localize LTE users 1 week ago | www.reddit.com

blueteamsec lte silent sms

Russia’s Cyber Tactics H1 2023 analytical report 1 week, 1 day ago | www.reddit.com

blueteamsec cyber report russia +1

From ScreenConnect to Hive Ransomware in 61 hours - The DFIR Report 1 week, 1 day ago | www.reddit.com

blueteamsec dfir hive hive ransomware +4

FBI chief says China has bigger hacking program than the competition combined 1 week, 2 days ago | www.reddit.com

blueteamsec chief china competition +3

npm packages caught exfiltrating Kubernetes config, SSH keys 1 week, 2 days ago | www.reddit.com

blueteamsec caught keys kubernetes +4

Open-Source-Threat-Intel-Feeds: This repository contains Open Source freely usable Threat Intel feeds that can be used … 1 week, 2 days ago | www.reddit.com

blueteamsec cve hash intel +7

Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast … 1 week, 2 days ago | www.reddit.com

apt attack backdoors blueteamsec +4

MaldevAcademyLdr.1: October update saw several interesting modules being released to our users. One of them … 1 week, 2 days ago | www.reddit.com

blueteamsec crowdstrike dll dll loader +6

Secure your resources with Conditional Access policy templates - Microsoft Entra 1 week, 2 days ago | www.reddit.com

access blueteamsec conditional access entra +4

DarkGate Indicators of Compromise (IOC) 1 week, 3 days ago | www.reddit.com

blueteamsec compromise darkgate indicators of compromise +1

MGM, Caesars casino hacks point to an alliance of teens and ransomware gangs - Cyberscurity … 1 week, 3 days ago | www.reddit.com

alliance blueteamsec caesars casino +17

Cerberus: A C++ tool to unstrip Rust/Go binaries (ELF and PE) 1 week, 3 days ago | www.reddit.com

blueteamsec cerberus elf rust +1

Microsoft Azure Sentinel: Adding TLPs (Traffic Light Patterns) to Incidents, Alerts and Analytics Rules 1 week, 3 days ago | www.reddit.com

alerts analytics azure azure sentinel +10

0-days exploited by commercial surveillance vendor in Egypt 1 week, 4 days ago | www.reddit.com

blueteamsec commercial egypt exploited +2

ExtractBitlockerKeys: A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from … 1 week, 4 days ago | www.reddit.com

administration bitlocker blueteamsec domain +7

The GitHub Security Lab’s journey to disclosing 500 CVEs in open source projects 1 week, 5 days ago | www.reddit.com

blueteamsec cves github github security lab +5

LUCR-3: Scattered Spider Getting SaaS-y in the Cloud 1 week, 6 days ago | www.reddit.com

blueteamsec cloud saas scattered spider +1

Multi-year Chinese APT Campaign Targets South Korean Academic, Government, and Political Entities 2 weeks ago | www.reddit.com

academic apt blueteamsec campaign +6

Comparison of MOTW (Mark of the Web) propagation support of archiver software for Windows - … 2 weeks ago | www.reddit.com

blueteamsec mark mark of the web motw +6

Fileless Remote Code Execution on Juniper Firewalls 2 weeks ago | www.reddit.com

blueteamsec code code execution fileless +4

Release YARA v4.4.0-rc1 - lnk module 2 weeks ago | www.reddit.com

blueteamsec lnk release yara

Theseus: Defending Azure Active Directory: Pass-Through Authentication Attacks and Countermeasures 2 weeks ago | www.reddit.com

active directory attacks authentication azure +6

What ticketing system do you use to track and correlate incidents? 2 weeks, 1 day ago | www.reddit.com

addresses blueteamsec cert context +16

Mid-2023 Ransomware Threat Landscape 2 weeks, 1 day ago | www.reddit.com

blueteamsec ransomware threat threat landscape

All thanks to ‘Big Yellow Taxi’: How State discovered Chinese hackers reading its emails 2 weeks, 1 day ago | www.reddit.com

big blueteamsec chinese chinese hackers +3

Time for a new SocVel Cyber Quiz! 2 weeks, 2 days ago | www.reddit.com

aerospace blueteamsec casinos chinese +16

Debugging the undebuggable and finding a CVE in Microsoft Defender for Endpoint 2 weeks, 2 days ago | www.reddit.com

blueteamsec cve debugging defender +4

donut-decryptor: Retrieve inner payloads from Donut samples 2 weeks, 2 days ago | www.reddit.com

blueteamsec decryptor

Periscope: a complete adversarial operations toolkit (C2, stagers, agents, automated ephemeral redirectors and task runners, … 2 weeks, 3 days ago | www.reddit.com

adversarial automated blueteamsec engine +5

Russian and North Korean Cyberattack Infrastructure Converge: New Hacking Data Raises National Security Concerns - … 2 weeks, 3 days ago | www.reddit.com

bill blueteamsec converge cryptocurrency +14

A Deep Dive into TPM-based BitLocker Drive Encryption 2 weeks, 4 days ago | www.reddit.com

bitlocker blueteamsec deep dive dive +3

Department of Homeland Security Homeland Threat Assessment - 2024 edition - "while cyber actors use … 2 weeks, 4 days ago | www.reddit.com

assessment att blueteamsec compromise +11

Incident Response Part 1: IR on Microsoft Security Incidents (KQL edition) 3 days, 16 hours ago | www.reddit.com

blueteamsec incident incident response incidents +5

Someone tried baiting people into downloading malware on r/cybersecurity 2 days, 15 hours ago | www.reddit.com

baiting blueteamsec cybersecurity malware +1

A Call To Action: Building the Cyber Workforce the Nation Needs | ONCD | The … 3 days, 11 hours ago | www.reddit.com

action blueteamsec call call to action +7

Free IOC Feeds 1 day, 5 hours ago | www.reddit.com

blueteamsec dns feed free +6

Critical Vulnerabilities in Progress Software WS_FTP Server - exploitable with a single HTTPS POST request … 2 days, 18 hours ago | www.reddit.com

blueteamsec critical critical vulnerabilities exploitation +12

NIST Publishes SP 800-82, Revision 3 | Guide to Operational Technology (OT) Security 2 days, 6 hours ago | www.reddit.com

blueteamsec guide nist operational +3

Sub7 source code released - an old code but it checks out 2 days, 19 hours ago | www.reddit.com

blueteamsec code old source code

Analyzing a DLL Reverse Shell 1 day, 23 hours ago | www.reddit.com

blueteamsec dll reverse reverse shell +1

Open-Source Remote Access Trojan Targets Armenian Airport and State Institutions - from Sept 22 3 days, 21 hours ago | www.reddit.com

access airport blueteamsec institutions +4

A Deep Dive into Brute Ratel C4 payloads – Part 2 6 days, 11 hours ago | www.reddit.com

blueteamsec brute brute ratel brute ratel c4 +3

Using Cloudflare to bypass Cloudflare 3 days, 4 hours ago | www.reddit.com

blueteamsec bypass cloudflare

Analysis of Time-to-Exploit Trends: 2021-2022: analyzed 246 vulnerabilities that were exploited between 2021 and 2022. 1 day, 19 hours ago | www.reddit.com

analysis blueteamsec exploit exploited +2

Items published with this topic over the last 90 days.

Latest

Macro-level ATT&CK Trends 2020-2023 9 hours ago | www.reddit.com

att blueteamsec macro trends

Free IOC Feeds 1 day, 5 hours ago | www.reddit.com

blueteamsec dns feed free +6

.NET Assembly Obfuscation for Memory Scanner Evasion 1 day, 12 hours ago | www.reddit.com

assembly blueteamsec evasion memory +2

Analysis of Time-to-Exploit Trends: 2021-2022: analyzed 246 vulnerabilities that were exploited between 2021 and 2022. 1 day, 19 hours ago | www.reddit.com

analysis blueteamsec exploit exploited +2

Analyzing a DLL Reverse Shell 1 day, 23 hours ago | www.reddit.com

blueteamsec dll reverse reverse shell +1

NIST Publishes SP 800-82, Revision 3 | Guide to Operational Technology (OT) Security 2 days, 6 hours ago | www.reddit.com

blueteamsec guide nist operational +3

bpftime: Userspace eBPF runtime for fast Uprobe & Syscall hook & Plugins 2 days, 8 hours ago | www.reddit.com

blueteamsec ebpf fast plugins +2

Someone tried baiting people into downloading malware on r/cybersecurity 2 days, 15 hours ago | www.reddit.com

baiting blueteamsec cybersecurity malware +1

How To Deploy a Complete Entra ID Conditional Access PoC in Under 5 Minutes 2 days, 16 hours ago | www.reddit.com

access blueteamsec conditional access deploy +4

iOS 15 Image Forensics Analysis and Tools Comparison - Processing details and general device information 2 days, 16 hours ago | www.reddit.com

analysis blueteamsec device forensics +7

Critical Vulnerabilities in Progress Software WS_FTP Server - exploitable with a single HTTPS POST request … 2 days, 18 hours ago | www.reddit.com

blueteamsec critical critical vulnerabilities exploitation +12

Sub7 source code released - an old code but it checks out 2 days, 19 hours ago | www.reddit.com

blueteamsec code old source code

Using Cloudflare to bypass Cloudflare 3 days, 4 hours ago | www.reddit.com

blueteamsec bypass cloudflare

A Call To Action: Building the Cyber Workforce the Nation Needs | ONCD | The … 3 days, 11 hours ago | www.reddit.com

action blueteamsec call call to action +7

Incident Response Part 1: IR on Microsoft Security Incidents (KQL edition) 3 days, 16 hours ago | www.reddit.com

blueteamsec incident incident response incidents +5

Open-Source Remote Access Trojan Targets Armenian Airport and State Institutions - from Sept 22 3 days, 21 hours ago | www.reddit.com

access airport blueteamsec institutions +4

Lazarus Group Exploits ManageEngine Vulnerability 4 days, 10 hours ago | www.reddit.com

blueteamsec exploits lazarus lazarus group +2

Cisco IOS and IOS XE Software Cisco Group Encrypted Transport VPN Software Out-of-Bounds Write Vulnerability: … 4 days, 19 hours ago | www.reddit.com

blueteamsec cisco cisco ios encrypted +10

DocIntel & MISP - Threat Intelligence Without Boiling the Ocean â Cosive 5 days, 11 hours ago | www.reddit.com

blueteamsec intelligence misp threat +1

Dark River. You can't see them, but they're there 5 days, 14 hours ago | www.reddit.com

blueteamsec dark river

People's Republic of China-Linked Cyber Actors Hide in Router Firmware - The actors have used … 6 days, 8 hours ago | www.reddit.com

blacktech blueteamsec capabilities china +12

From payday to payoff: Exploring the money laundering strategies of cybercriminals - Most of the … 6 days, 9 hours ago | www.reddit.com

addresses blueteamsec cybercriminals laundering +5

A Deep Dive into Brute Ratel C4 payloads – Part 2 6 days, 11 hours ago | www.reddit.com

blueteamsec brute brute ratel brute ratel c4 +3

LDAPWordlistHarvester: A tool to generate a wordlist from the information present in LDAP, in order … 1 week ago | www.reddit.com

accounts blueteamsec crack domain +6

JA4+ Network Fingerprinting 1 week ago | www.reddit.com

blueteamsec fingerprinting network

Everlasting ROBOT: the Marvin Attack - The Marvin Attack is a return of a 25 … 1 week ago | www.reddit.com

attack attacker blueteamsec decryption +8

Spain closes Pegasus investigation over ‘lack of cooperation’ from Israel 1 week ago | www.reddit.com

blueteamsec cooperation investigation israel +2

RedPersist: RedPersist is a Windows Persistence tool written in C# 1 week ago | www.reddit.com

blueteamsec persistence tool windows +1

Using silent SMS to localize LTE users 1 week ago | www.reddit.com

blueteamsec lte silent sms

Russia’s Cyber Tactics H1 2023 analytical report 1 week, 1 day ago | www.reddit.com

blueteamsec cyber report russia +1

From ScreenConnect to Hive Ransomware in 61 hours - The DFIR Report 1 week, 1 day ago | www.reddit.com

blueteamsec dfir hive hive ransomware +4

FBI chief says China has bigger hacking program than the competition combined 1 week, 2 days ago | www.reddit.com

blueteamsec chief china competition +3

npm packages caught exfiltrating Kubernetes config, SSH keys 1 week, 2 days ago | www.reddit.com

blueteamsec caught keys kubernetes +4

Open-Source-Threat-Intel-Feeds: This repository contains Open Source freely usable Threat Intel feeds that can be used … 1 week, 2 days ago | www.reddit.com

blueteamsec cve hash intel +7

Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast … 1 week, 2 days ago | www.reddit.com

apt attack backdoors blueteamsec +4

MaldevAcademyLdr.1: October update saw several interesting modules being released to our users. One of them … 1 week, 2 days ago | www.reddit.com

blueteamsec crowdstrike dll dll loader +6

Secure your resources with Conditional Access policy templates - Microsoft Entra 1 week, 2 days ago | www.reddit.com

access blueteamsec conditional access entra +4

DarkGate Indicators of Compromise (IOC) 1 week, 3 days ago | www.reddit.com

blueteamsec compromise darkgate indicators of compromise +1

MGM, Caesars casino hacks point to an alliance of teens and ransomware gangs - Cyberscurity … 1 week, 3 days ago | www.reddit.com

alliance blueteamsec caesars casino +17

Cerberus: A C++ tool to unstrip Rust/Go binaries (ELF and PE) 1 week, 3 days ago | www.reddit.com

blueteamsec cerberus elf rust +1

Microsoft Azure Sentinel: Adding TLPs (Traffic Light Patterns) to Incidents, Alerts and Analytics Rules 1 week, 3 days ago | www.reddit.com

alerts analytics azure azure sentinel +10

0-days exploited by commercial surveillance vendor in Egypt 1 week, 4 days ago | www.reddit.com

blueteamsec commercial egypt exploited +2

ExtractBitlockerKeys: A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from … 1 week, 4 days ago | www.reddit.com

administration bitlocker blueteamsec domain +7

The GitHub Security Lab’s journey to disclosing 500 CVEs in open source projects 1 week, 5 days ago | www.reddit.com

blueteamsec cves github github security lab +5

LUCR-3: Scattered Spider Getting SaaS-y in the Cloud 1 week, 6 days ago | www.reddit.com

blueteamsec cloud saas scattered spider +1

Multi-year Chinese APT Campaign Targets South Korean Academic, Government, and Political Entities 2 weeks ago | www.reddit.com

academic apt blueteamsec campaign +6

Comparison of MOTW (Mark of the Web) propagation support of archiver software for Windows - … 2 weeks ago | www.reddit.com

blueteamsec mark mark of the web motw +6

Fileless Remote Code Execution on Juniper Firewalls 2 weeks ago | www.reddit.com

blueteamsec code code execution fileless +4

Release YARA v4.4.0-rc1 - lnk module 2 weeks ago | www.reddit.com

blueteamsec lnk release yara

Theseus: Defending Azure Active Directory: Pass-Through Authentication Attacks and Countermeasures 2 weeks ago | www.reddit.com

active directory attacks authentication azure +6

What ticketing system do you use to track and correlate incidents? 2 weeks, 1 day ago | www.reddit.com

addresses blueteamsec cert context +16

Mid-2023 Ransomware Threat Landscape 2 weeks, 1 day ago | www.reddit.com

blueteamsec ransomware threat threat landscape

All thanks to ‘Big Yellow Taxi’: How State discovered Chinese hackers reading its emails 2 weeks, 1 day ago | www.reddit.com

big blueteamsec chinese chinese hackers +3

Time for a new SocVel Cyber Quiz! 2 weeks, 2 days ago | www.reddit.com

aerospace blueteamsec casinos chinese +16

Debugging the undebuggable and finding a CVE in Microsoft Defender for Endpoint 2 weeks, 2 days ago | www.reddit.com

blueteamsec cve debugging defender +4

donut-decryptor: Retrieve inner payloads from Donut samples 2 weeks, 2 days ago | www.reddit.com

blueteamsec decryptor

Periscope: a complete adversarial operations toolkit (C2, stagers, agents, automated ephemeral redirectors and task runners, … 2 weeks, 3 days ago | www.reddit.com

adversarial automated blueteamsec engine +5

Russian and North Korean Cyberattack Infrastructure Converge: New Hacking Data Raises National Security Concerns - … 2 weeks, 3 days ago | www.reddit.com

bill blueteamsec converge cryptocurrency +14

A Deep Dive into TPM-based BitLocker Drive Encryption 2 weeks, 4 days ago | www.reddit.com

bitlocker blueteamsec deep dive dive +3

Department of Homeland Security Homeland Threat Assessment - 2024 edition - "while cyber actors use … 2 weeks, 4 days ago | www.reddit.com

assessment att blueteamsec compromise +11

Topic trend (last 90 days)

Top (last 7 days)

Incident Response Part 1: IR on Microsoft Security Incidents (KQL edition) 3 days, 16 hours ago | www.reddit.com

blueteamsec incident incident response incidents +5

Someone tried baiting people into downloading malware on r/cybersecurity 2 days, 15 hours ago | www.reddit.com

baiting blueteamsec cybersecurity malware +1

A Call To Action: Building the Cyber Workforce the Nation Needs | ONCD | The … 3 days, 11 hours ago | www.reddit.com

action blueteamsec call call to action +7

Free IOC Feeds 1 day, 5 hours ago | www.reddit.com

blueteamsec dns feed free +6

Critical Vulnerabilities in Progress Software WS_FTP Server - exploitable with a single HTTPS POST request … 2 days, 18 hours ago | www.reddit.com

blueteamsec critical critical vulnerabilities exploitation +12

NIST Publishes SP 800-82, Revision 3 | Guide to Operational Technology (OT) Security 2 days, 6 hours ago | www.reddit.com

blueteamsec guide nist operational +3

Sub7 source code released - an old code but it checks out 2 days, 19 hours ago | www.reddit.com

blueteamsec code old source code

Analyzing a DLL Reverse Shell 1 day, 23 hours ago | www.reddit.com

blueteamsec dll reverse reverse shell +1

Open-Source Remote Access Trojan Targets Armenian Airport and State Institutions - from Sept 22 3 days, 21 hours ago | www.reddit.com

access airport blueteamsec institutions +4

A Deep Dive into Brute Ratel C4 payloads – Part 2 6 days, 11 hours ago | www.reddit.com

blueteamsec brute brute ratel brute ratel c4 +3

Using Cloudflare to bypass Cloudflare 3 days, 4 hours ago | www.reddit.com

blueteamsec bypass cloudflare

Analysis of Time-to-Exploit Trends: 2021-2022: analyzed 246 vulnerabilities that were exploited between 2021 and 2022. 1 day, 19 hours ago | www.reddit.com

analysis blueteamsec exploit exploited +2

Senior Supervisor, Risk Monitoring

@ Bank of canada | Ottawa, ON

View on infosec-jobs.com

Principal Supervisor, Risk Monitoring

@ Bank of canada | Ottawa, ON

View on infosec-jobs.com

Principal Supervisor, Cyber Risk Monitoring

@ Bank of canada | Ottawa, ON

View on infosec-jobs.com

Software Engineer, Security Foundations

@ Lyft | San Francisco, CA

View on infosec-jobs.com

Software Engineer - Security Prevention Engineering, AWS AppSec - Prevention Engineering

@ Amazon.com | Toronto, Ontario, CAN

View on infosec-jobs.com

Senior Data Security Software Engineer

@ Roblox | San Mateo, CA, United States

View on infosec-jobs.com