Joined September 2014
- Tweets 241
- Following 334
- Followers 175
- Likes 794
6 Photos and videos
Alla Yurchenko retweeted
23 May 2023
my last tweet
new posts on #sigma uncoder.io and anything #infosec related which reflects my personal views will be published here infosec.exchange/@thebardsso…
story in the thread below
7
8
18
817
Alla Yurchenko retweeted
22 May 2023
discord.gg/socprime
Join the largest open-source community for collective cyber defense!
p.s. we’ve got cookies and #uncoder AI
#greenteam
10
14
570
Alla Yurchenko retweeted
13 Dec 2022
I guess I'll suspend access to our freemium for #Tesla and #SpaceX as a form of protest? o.O not like anyone will notice...
13 Dec 2022
Hey @elonmusk, it seems like it's no longer possible to have a Ukrainian number verify a Twitter account/two-factor authentication. Ukraine is not in your list of countries, see our screenshot.
It's vital for us to keep showing the world what's going on in our country.
1
4
Alla Yurchenko retweeted
31 Oct 2022
bleeping computer is under control of FSB and spreading ru propaganda. more details coming soon
1
9
10
Alla Yurchenko retweeted
28 Oct 2022
#Sigma rules to detect #LV #ransomware, an alleged #REvil successor actively targeting Europe & North America.
socprime.com/rs/search-resul…
650 rules to detect ransomware threats are right at hand! Get 30 for free or reach all with On-Demand at my.socprime.com/pricing #BlueTeam
3
3
Alla Yurchenko retweeted
26 Oct 2022
#ThePrimeHunt v 1.0.2 is out, despite blackouts and drone terror, massive thanks to our R&D team in #Ukraine. What's new?
github.com/socprime/the-prim…
#Splunk is now supported!
EchoTrail integration for file rep context
ultimatewindowssecurity.com/ for context
improvements:
3
15
34
Alla Yurchenko retweeted
24 Oct 2022
SOC Prime is attending IT-SA 2022 on October 25-27 in Nürnberg. Meet us and learn how to boost the effectiveness of your security operations with Collective Cyber Defense and Detection as Code.
Interested? Reach out to @TillsTweet for more details. @itsa_ITSecurity #itsaexpo
1
2
7
Alla Yurchenko retweeted
20 Oct 2022
#Sigma rules to detect #Text4shell (CVE-2022-42889), a critical #RCE #vulnerability in Apache Commons Text. Potential #Log4Shell situation.
socprime.com/rs/search-resul…
#CVE #CVE202242889 #exploit #BlueTeam #DFIR #PoC #ThreatHunting #CTI #mitre #cyberattack #infosec #cybersec #SOC
1
7
19
Alla Yurchenko retweeted
7 Oct 2022
Do we plan to support more SIEM / EDR? Well, since it started with #sigma, the goal would be to support all sigmacs / sigma backends out there.
Ideas? Suggestions? Issues? PR? github.com/socprime/the-prim…
1
7
Alla Yurchenko retweeted
7 Oct 2022
Today one of my dreams came to life. The Prime Hunt, one UI for platform agnostic threat hunting is out: github.com/socprime/the-prim…
An #opensource LGPL browser add-on that extends the success of #sigma as platform agnostic language for threat hunting to one UI. Waaaat? read on!
11
46
138
Alla Yurchenko retweeted
6 Oct 2022
6 Oct 2022
Deliver a Strike by Reversing a Badger: Brute Ratel Detection and Analysis | by @splunk
splunk.com/en_us/blog/securi…
1
1
Alla Yurchenko retweeted
5 Oct 2022
Initial #sigma rules for @elastic stack for #proxynotshell. We're working on something special together so stay tuned!
5 Oct 2022
Detect #ProxyNotShell with 14 #Sigma rules for #ElasticStack: socprime.com/rs/search-resul…
Exploitation patterns, ATT&CK mapping, useful recommendations, logging details: my.socprime.com/integrations…
Learn more: linkedin.com/posts/eugene-tk…
#CVE202241040 #CVE202241082 #GTSCExchange @elastic
1
3
Alla Yurchenko retweeted
5 Oct 2022
14 #Sigma rules for #Snowflake to detect #ProxyNotShell: socprime.com/rs/search-resul…
Exploitation patterns, ATT&CK mapping, strategic & tactical recommendations, logging details: my.socprime.com/integrations…
Learn more: linkedin.com/posts/eugene-tk…
#CVE202241040 #CVE202241082 #GTSCExchange
7
14
4 Oct 2022
#ProxyNotShell 13 detection rules for #ChronicleSecurity:
socprime.com/rs/search-resul…
Exploitation patterns, ATT&CK mapping, strategic & tactical recommendations, logging details: my.socprime.com/integrations…
#ProxyNotShell #CVE202241040 #CVE202241082 #0day #GTSCExchange #Sigma
3
8
14
4 Oct 2022
Immediate detection is essential as exploitation of public-facing Exchange servers is used by russian threat actors against Ukraine and allies.
Defence Intelligence of Ukraine: gur.gov.ua/en/content/okupan…
CERT-UA on Exchange Exploitation as Initial Access: cert.gov.ua/article/1751036
3
Alla Yurchenko retweeted
3 Oct 2022
Please, add Alyaska (was russia befor 1867) to the deal
47
177
3,543
Alla Yurchenko retweeted
3 Oct 2022
To defend Ukrainian organisations using IBM #QRadar, we are sharing pro bono 124 #Sigma rules on #ProxyNotShell and relevant vulnerabilities on Initial Access tactics as reported by #CERTUA division of @dsszzi
Full post
linkedin.com/posts/andriimb_…
1
8
15
Alla Yurchenko retweeted
1 Oct 2022
12 Sigma rules for CVE-2022-41040 & CVE-2022-41082 aka #ProxyNotShell for Microsoft Sentinel along with MITRE ATT&CK Mapping, strategic, tactical and technical recommendations including logging. Search here, no registration:
socprime.com/rs/search-resul…
10
45
145
I'll say it once and I'll say it a thousand times, if your not using @cyb3rops 's Sigma, or subscribed to threat feeds/detections in @SOC_Prime. Your doing your SOC a disservice. Your goal this year should be to detect the majority of MITRE Techniques per Datasource..
11 May 2022
socprime.com is now a cyber threats search engine:
2500 #sigma rules
metadata on 7000 detections
in-browser IDE
integrated Uncoder.io
autolinks to exploits, CVE, patches, CTI
embedded @MITREattack
no registration
twitter integration ;) @elonmusk
5
29
168