Hal Pomeranz @hal_pomeranz

I am retiring this social media account. Find me as @hal_pomeranz@infosec.exchange

 Orlando, FL
deer-run.com/~hal/
Joined November 2008
  • Tweets 19,311
  • Following 237
  • Followers 13,672
228 Photos and videos
Load newest
Replying to @pgallovich
You are most welcome!
1
Hal Pomeranz retweeted
Noah Kantrowitz @kantrn
7 Feb 2020
Putting up a batslgnal. Rackspace terminated their support for FOSS projects at the end of 2019 and apparently didn't tell me (or anyone?), and is now saying that I owe them $850. I've stopped all my infra with them, but "non-payment accounts are able to be sent to Collections".
13
80
32
128
You’re very welcome!
1
This was so much fun that we're going to do it again! Watch for future announcements!
Black Hills Information Security
 @BHinfoSecurity
6 Feb 2020
We hit an all-time webcast attendance record today! Thank you to the 1,533 people that tuned in live for -- Linux Command-Line Dojo w/ @hal_pomeranz Next webcast coming soon... most likely next week. Recordings are always -- youtube.com/blackhillsinform…
1
8
36
Replying to @attrc
Antivirus for Linux has to be right up there in the snake oil category
2
It's Friday and you're looking forward to the weekend. But why not bug your boss to send you to some Linux Forensics training taught by yours truly! kernelcon.org/agenda#linfn6
1
Replying to @Patrascu_F
You're most welcome. We're likely coming back with another installment soon!
Happy birthday @4n6woman — may your btime always be happy!
Hal Pomeranz retweeted
Sophos X-Ops @SophosXOps
6 Feb 2020
NEW RESEARCH: Two different ransomware attacks borrow vulnerable driver to remove security software from the targeted computers just prior to performing the destructive file encryption portion of the attack. Full story: news.sophos.com/en-us/2020/0…
7
135
9
218
Logontracer: a tool to investigate malicious logon by visualizing and analyzing Windows Active Directory event logs. Also available as a #docker container by the awesome @jpcert_en github.com/JPCERTCC/LogonTra… #DFIR #SecOps #BlueTeam #LogonTracer
2
26
40
Hal Pomeranz retweeted
Eric Zimmerman
 @EricRZimmerman
6 Feb 2020
Just pushed updates to just about all my tools. Updated controls, new GUIDs, new code signing certificate, etc. I also bumped several programs to v1.0 status #DFIR Use Get-ZimmermanTools.ps1 to quickly update
3
39
122
Replying to @RonJonArod
My email is in the talk slides - deer-run.com/~hal/CLDojo.pdf
1
Replying to @yourbuddymeg @darngooood
#2 -- I cannot help myself
Just a couple of hours from now. Tune in early for the pre-show banter!
Black Hills Information Security
 @BHinfoSecurity
6 Feb 2020
TODAY - 2pm EST, 2/6 Webcast -- Linux Command-Line Dojo w/ @hal_pomeranz Register: attendee.gotowebinar.com/reg…
5
4
1
19
Replying to @hacks4pancakes @MalwareJake
They're donated. DoD can't use them, so they surplus them to law enforcement. It's still stupid for campus police to have one, but it's not like the university purchased it.
4
15
We're over 2500 registrations and the streaming service caps us at 3000. Reserve your place today!
Black Hills Information Security
 @BHinfoSecurity
3 Feb 2020
Upcoming Webcast -- Linux Command-Line Dojo -- w/ @hal_pomeranz Thur, Feb 6, 2020 - 2:00pm EST Register: attendee.gotowebinar.com/reg… In this webcast we have our friend Hal Pomeranz sharing his massive knowledge on Linux.
8
13
Replying to @MalwareJake
This makes me so happy
2
Upcoming Webcast -- Linux Command-Line Dojo -- w/ @hal_pomeranz Thur, Feb 6, 2020 - 2:00pm EST Register: attendee.gotowebinar.com/reg… In this webcast we have our friend Hal Pomeranz sharing his massive knowledge on Linux.
1
12
1
18
Sharing this again for folks who missed it over the weekend
Hal Pomeranz @hal_pomeranz
1 Feb 2020
My Linux Memory Grabber tool now prefers to use AVML for memory capture (falling back to LiME if AVML fails) github.com/halpomeranz/lmg
2
3
Load more