I am retiring this social media account. Find me as @hal_pomeranz@infosec.exchange

Orlando, FL
Joined November 2008
Filter
Exclude
Time range
-
Near
Thanks for the kind words, Tyler! Your check is in the mail…
Last week I took @hal_pomeranz Linux Forensics course on @Antisy_Training. Amazing course and well worth every cent. Highly recommended!
1
16
So let me get this straight, @McDonalds. The chicken is the “air” portion of this horror show?
4
1
2
15
Red Team is always learning from the Blue. All you Blue Teamers take note.
Finished @Antisy_Training workshop "Linux Forensics" with @hal_pomeranz. I've done forensics in Win, but this was my first time doing with Linux. As an offensive person, learning about the artifacts and things left behind by attackers in linux, has made more well-rounded. A++
6
25
Comment from one of my Linux Forensics students— “Goal: find someone who looks at me like Hal looks at Linux file systems 🙂”
2
1
42
Our perspective is colored by being third-party IR teams. Orgs that have good network telemetry are generally mature enough to have working IR capability in-house and so would never call us.
1
4
Psst. Nobody tell Michael about the upcoming filesystem mounting challenge...
When my brain hurts, I know I've learned alot, and it's about to explode! Day 1 of @Antisy_Training course, Linux Forensics with @hal_pomeranz, was insane! Memory dumps with Volatility and more. Spotting adv. rootkits. Learning to be better at my Offensive, and still have 3 days!
1
4
I’m excited about this partnership and Spyderbat’s technology. If you have significant Linux infrastructure, you should try out their product (for free)!
** Breaking News ** Spyderbat is pleased to announce Hal Pomeranz (@hal_pomeranz) joins our Board of Advisors, adding his Linux security expertise to help realize Spyderbat's truly game-changing technology. buff.ly/3uculkI
1
2
11
Fear no more! I'll be teaching a new Linux Command-Line class at Wild West Hackin Fest in May -- antisyphontraining.com/linux…
1
Replying to @DylanOwendylan
The first two hours of your IR are half price. I’ll drink to that!
1
Replying to @securitydevops
You remember that impromptu demo I did about recovering the deleted *.c code? I’ve codified that into a lab that follows a new module on EXT data recovery. Download latest material from archive.org/details/HalLinux…
My first in-person training event since the pandemic started. Looking forward to being back in Omaha!
TRAINING: Today's feature is Introduction to Linux Forensics with the always awesome @hal_pomeranz! Hal will provide the background and information to teach you to properly conduct Linux forensic examinations in this two-day hands-on course. Register ➡️ kernelcon.org/training#linux…
2
5
13
Remember I said, "Never low-bid sushi!" Well apparently people are low-bidding IR work. Neither is going to have a good outcome.
9
9
1
65
Replying to @k8em0
To heck with editing tweets, what is needed is the “deliver massive electric shock to sender” feature
Sounds like retreating into ever smaller, more exclusive echo chambers
1
3
You can’t just say “Slack” or “Discord” we have to talk specific servers and channels. LinkedIn has signal-noise issues with too much self-promotional wool gathering and little hard content.
1
9
And where did the “right people” go?
1
Interesting product demo and fun SOC challenge at spyderbat.com/defend-the-fla…
1
1
10
There is still time to register for my Linux Forensics class! Virtual training Feb 1-4 (next Tue-Fri), 12:00pm-4:00pm US Eastern time. Hope to see you online! antisyphontraining.com/event…
6
13