I am retiring this social media account. Find me as @hal_pomeranz@infosec.exchange
Orlando, FL
Joined November 2008
- Tweets 19,311
- Following 237
- Followers 13,672
- Likes 12
Hal Pomeranz retweeted
NEW: This is Daxin, the most advanced Chinese espionage tool we've ever found. Used to spy on governments worldwide. symantec-enterprise-blogs.se…
10
346
34
696
Hal Pomeranz retweeted
I'll close by noting that for most orgs, right now you're more likely to suffer an outage due to a self inflicted wound than a destructive cyberattack.
Be vigilant. Increase log retention. Turn on netflow. But I wouldn't be making major security architecture changes now. /FIN
1
6
78
Hal Pomeranz retweeted
This isn't a theoretical problem -- those floods of funds have corrupted politics in the US, and concentrated power in Russia in the hands of Putin and his oligarchs. The US and UK have helped to clean and store the money being used to wage war in Ukraine.
4
89
2
571
Hal Pomeranz retweeted
STOP THE PRESSES! I made a serious error.
This !! technique as shown doesn't work.
1,001 Thanks to @joswr1ght for catching this, and showing me a fix that still uses !!
What you need to do is this...
alias keeper='echo $(history -p !!) >>~/.keeper.txt'
4
12
82
Hal Pomeranz retweeted
If you are in the US/UK/ANZ at a small co-op/muni & need ICS cybersecurity support (Dragos Platform technology, managed service, and incident response) please feel free to message me directly. Dragos is going to make our capabilities free for the smaller members of our community
50
703
68
1,929
We are so far from living up to the ideals laid out in our founding documents. And the hypocrisy is particularly rank at this moment.
1
2
I wanted to write that such behavior is un-American. But the reality is that denigrating, abusing, and using others for political and financial gain has played itself out in American history from the founding of the republic 250 years ago.
1
1
4
Using any group of humans—immigrants, the LGBTQ+ community, anybody—as a wedge issue or to “motivate your base” is despicable. It’s also straight out of the authoritarian playbook. It frightens me that such people hold positions of power.
1
4
17
Florida says “hold my beer” and is enacting legislation that would have school teachers outing kids to their parents
2
I believe this was mentioned in a VH-1 “Behind the Music” episode
Like all things in life, it can be related to the Spice Girls.
In their smash hit Wannabe (if you wanna be my lover)
"if you wanna be my lover, you gottta setenforce 1"
(at least that's how the original cut went before it got workshopped to death)
1
Oh look, a fake AV pop-up in my web browser! Should I... nah, I've got too much crap to do today than joust with these idiots.
6
Please turn on SELinux. Please. Please. Please. At the very least in "Permissive" mode. archive.org/details/HalSELin…
1
1
3
I’ve said if before and I’ll say it again—listen to Mick. He gives good advice.
I've had 3 calls so far today (it's not even 10) about defending against Russian cyber ops
I'm tired of having the same call... so... here's what I've told everyone. This is the playbook you need... but it's not going to be what you think it will be.
Ready? Lets go!
1
8
Hal Pomeranz retweeted
Meet Ollie. He's in the middle of something very important. He'll be with you in a second. (video courtesy of @OllieLeeTheCorgi on IG)
144
2,332
252
19,957
0
If you're not going to Kernelcon you are missing out-- on these sweet electronics and my Linux Forensics class kernelcon.org/training#linux…
7
9
Hal Pomeranz retweeted
After I have realized Live Kernel Dump is basically a result of one NtSystemDebugControl() call, my next thought was "And what if I wrap it into PowerShell?"
1. CreateFile(),
2. NtSystemDebugControl(),
3. Enjoy/Profit! 😎
github.com/gtworek/PSBits/bl…
3
73
2
199