I am retiring this social media account. Find me as @hal_pomeranz@infosec.exchange
Orlando, FL
Joined November 2008
- Tweets 19,311
- Following 237
- Followers 13,672
- Likes 12
Hal Pomeranz retweeted
#Emotet AAR for Weekend 2019/11/08-10: Spamming stopped early in the morning on 11/09 UTC at 03:00. Still was some heavy spamming last week. We are also finding loader URLs we do not have docs for and are posting them now in new section. Have a good week! TT.
#Emotet Weekend Summary Post for 2019/11/08-10: Binary hash busting stopped 06:30-06:45 11/09. Found some additional loader sites and made new section for unknown e1-e3 loader sites. Hope this is a good week for everyone. Stay Safe.
pastebin.com/S0e8p4Ly
paste.cryptolaemus.com/emote…
1
5
6
Hal Pomeranz retweeted
I compiled my recommended reading list here, hope it helps: “A Top 10 Reading List if You’re Getting Started in Cyber Threat Intelligence” by Katie Nickels link.medium.com/cOPdWdX5t1
4
28
2
61
Hal Pomeranz retweeted
New cyber challenge from Foxton Forensics. Have some fun with browser forensics >> buff.ly/2Q6fhB4
1
18
2
40
Congrats! Well done!
Well @sansforensics it’s been an amazing week at #DFIRCON. Thanks to @SANSInstitute @DavidJBianco and @hal_pomeranz for teaching FOR572!
Even came out winning the coin!
4
Hal Pomeranz retweeted
Remember that time you were investigating an intrusion and thought "wow, all these logs are making this investigation way too easy?"
Me either. Now take that sinking feeling you're getting from reliving that nightmare and turn it into motivation for increasing your logging.
11
42
3
169
Hal Pomeranz retweeted
I only just tonight put together, thanks to @sarahjeong, that *both* science fiction and computer programming were invented by women pissed off at Lord Byron.
16
1,111
52
3,473
Hal Pomeranz retweeted
Great #trickbot traffic analysis tutorial by our friend @malware_traffic at:
unit42.paloaltonetworks.com/…
Nice work Brad!
79
1
167
Sometimes our industry seems full of charlatans, liars, and looters. Certainly we have plenty. But as in life, they are vastly outnumbered by people of good will. Don’t let the bastards get you down.
1
1
10
Taking a moment to recognize @darth_kevin as one of the good people in our industry. I am grateful to know him.
1
8
Hal Pomeranz retweeted
LISTEN UP! If you are at a conference with a group of friends or coworkers and a solo conference goer comes up and tries to chat with your group DON'T shun them! I bet it took a lot of courage for them to approach you, the least you can do is be friendly and welcoming!
27
188
26
1,308
Hal Pomeranz retweeted
Seeing active exploit attempts from > 300 source IPs for rConfig vulnerability. No patch AFAIK. ow.ly/DUCZ50x0LuK #rconfig (more details later)
20
1
17
Hal Pomeranz retweeted
Hey folks, exactly 1 year ago today I was in my final 7-hour chemo session. 🎂
Know what wasn't on my mind? All the daily crud that constantly weighs us down.
Know what was on my mind? Life.
Explore, research, be kind, play, rock all the things.
You. Now.
You deserve it.
25
69
3
473
I’ve always loved this method for quick triage of memory images
#DFIR tip:
You can trivially automate detection of known malware through the use of three @volatility plugins + a simple bash script + clamscan&yara:
volatility-labs.blogspot.com…
2
1