I am retiring this social media account. Find me as @hal_pomeranz@infosec.exchange
Orlando, FL
Joined November 2008
- Tweets 19,311
- Following 237
- Followers 13,672
- Likes 12
Linux Forensics training in June!
June's just around the corner & we have great trainings coming up! Check out June's lineup of training courses in the graphic below. ⬇️
@Chris_Brenton @joff_thyer @jhamcorp @OrOneEqualsOne @hal_pomeranz @c1ph0r @C_3PJoe @ralphte1 @ustayready @InfoSystir
antisyphontraining.com/train…
1
11
Hal Pomeranz retweeted
SMBeagle: Intro SMBeagle is an (SMB) fileshare auditing tool that hunts out all files it can see in the network and reports if the file can be read and/or written. All these findings are streamed out to either a CSV file or… dlvr.it/SQqDfZ #cyber #threathunting #infosec
6
90
3
272
Hal Pomeranz retweeted
The final dance in Dirty Dancing, but they’re dancing to The Muppet Show theme tune.
2,579
37,475
11,662
146,974
0
Hal Pomeranz retweeted
🚨"assume compromise**
"for all instances of impacted VMware products that are accessible from the internet: Assume compromise, immediately disconnect from the production network, and conduct threat hunt activities as outlined in CISA CSA available here: cisa.gov/uscert/ncas/alerts/…"
25
2
29
Hal Pomeranz retweeted
I’ll add: if you ever have to have a convo with HR and you see they are taking notes, you should be doing the same.
Oh yeah, recent conversation with a friend reminded me to remind you that HR exists to protect the company, not to protect or support you. Disregard this at your own peril.
1
6
13
Hal Pomeranz retweeted
That’s how you showcase your knowledge: doing dangerous and complex things exactly right (or so you think) when there are easier, safer and less complex ways available..
2
1
Yes, if the sticky bit is set and you do everything exactly right you can safely open files under /tmp without creating a privilege escalation race condition. But why go there when there are so many other options available?
1
1
6
Hal Pomeranz retweeted
We have a couple of entry level #DFIR jobs available at @HuntressLabs
Threat Operations Analyst I (AUS Weekend Shift) boards.greenhouse.io/huntres…
Threat Operations Analyst I (UK Weekend Shift) boards.greenhouse.io/huntres…
5
5
Hal Pomeranz retweeted
If you work in tech today, you stand on the shoulders of giants who stand on the shoulders of giants who stand on the shoulders of giants, whether you're a n00b or a "giant" yourself.
Never forget it.
12
31
3
230
Hal Pomeranz retweeted
Fantastic read for exploit devs. Not sure how I missed this before.
Today I am releasing the final post of a 3 part series on “modern” browser exploitation targeting Windows. In this post we port our exploit primitives to Edge itself & combine 12 ROP chains in order to defeat ACG, CIG, DEP, ASLR, CFG, "no child processes"
connormcgarr.github.io/type-…
2
1
16
Hal Pomeranz retweeted
Dear InfoSec newbies: I've been in this industry ~25 years. Professionally speaking, at the exact moment that I type this (or when I re-edit this), there are like AT LEAST 5 things I'm responsible for that I totally have no clue what to do about. It gets better - but not easier🤯
26
76
7
961
Honestly I'm glad there's not a copy of my driver's license floating around out there. As for the rest, it's just inconvenience, not the end of the world.
3
