Reluctant security & intelligence practitioner and tool developer. Mainly Tweets about aggregating and visualizing cyber threat & OSINT datasets
Joined September 2018
- Tweets 529
- Following 585
- Followers 1,403
- Likes 735
97 Photos and videos
Pinned Tweet
20 Jun 2022
On its 1st anniversary, excited to announce the re-launch of MetaOSINT, the #OSINT tool & resource aggregator! v2 contains 900 new resources (5,700 total) wrapped in an improved UI. The best news? A method for ongoing updates, so stay tuned for more ~weekly additions!
9
39
113
8 Jan 2024
I’ve tracked thousands of #OSINT resources over a half-decade via the MetaOSINT project. Here are my thoughts on how the dataset’s evolution might reflect broader trends & changes in the underlying info landscape during a time of major global disruption: metaosint.github.io/2023-osi…
4
15
2,672
11 Dec 2023
MetaOSINT v3.0 is live!
The first major update in over a year brings 8,000 new resources to the tool, more than doubling the previous tally. But structured categories & citation counts still make it easy to surface popular, relevant #OSINT resources: metaosint.github.io/
17
42
4,824
18 Nov 2023
Long-overdue update (largest yet) to my #OSINT-focused project MetaOSINT coming soon! Adding a ton of new, timely resources to the database while maintaining its hallmark ease of use. Brush back up before the update lands in the coming days: metaosint.github.io
8
30
6,034
TropChaud retweeted
17 Oct 2023
Taking a data-driven approach, @GlobalCyberAlln and @TidalCyber 's recent report validates the significant impact basic #cyberhygiene measures have in defense against the most relevant #ransomware methods of attack against #SMBs. Learn more at
globalcyberalliance.org/repo…
4
4
1,304
4 Oct 2023
If you've felt like it's taking longer to get through a typical CTI report lately, you're not wrong
1
1
6
589
4 Oct 2023
The rich detail in recent threat reporting is an extremely welcome trend. But the reality is that longer/denser reports can place more burden on teams, if they’re attempting to (or leadership expects them to) thoroughly process each one
1
225
TropChaud retweeted
2 Oct 2023
Meet us in Iowa at the 2023 @QCCornCON on 10/5-7. @advemuian will be presenting "Using ATT&CK for Threat Profiling, Defensive Stacks, and Coverage Maps" and "Mind the Gap: From CTI to Defensive Improvements." Use code "TID25" for 25% off! corncon.net #mitreattack
2
5
656
19 Sep 2023
Wholeheartedly believe that most in the #threatintel, #detectionengineering, and #adversaryemulation spaces can benefit by bookmarking this free-to-use tool as we push regular updates into the platform
19 Sep 2023
We added tons of content across our free Community Edition this week, including #BlackCat/#ALPHV & #ScatteredSpider tool & TTP collections and updates to @elastic & Atomic Red Team capabilities in our Product Registry: app.tidalcyber.com #ThreatInformedDefense
3
441
TropChaud retweeted
12 Sep 2023
NEW Community Edition content derives from @CISAgov's detailed new advisory. Start w/ the new Campaign object, pivot to dozens of new & updated Tools, Malware, & @MITREattack Technique relationships just added: app.tidalcyber.com/campaigns…
5
6
424
6 Sep 2023
New blog is out, walking through practical workflows for detecting & testing persistence behaviors used by #FlaxTyphoon #APT, entirely via free/community resources tidalcyber.com/blog/detectin…
1
2
5
674
6 Sep 2023
A set of mini purple team exercises involved a typical cast of characters including @redcanary #AtomicRedTeam tests @sigma_hq rules run via Chainsaw on logs configured via @olafhartong's Sysmon-Modular config
Ultimately we contributed a new test aligned with an existing rule
1
1
2
177
6 Sep 2023
The value here is organizing the exercise around a recent, prominent threat - recently enhanced Search in @TidalCyber Community Edition helps quickly surface relevant content, & pivoting on mapped @MITREattack techniques expands focus to include variations on observed procedures
1
4
165
4 Sep 2023
Definitely feels like there’s ample space for more practical guidance around baselining, an essential part of the hunting discipline. Looking forward to the next piece!
3 Sep 2023
I see my message is getting across 👊
I’m also curious to see how others do it as much is spoken but very little shared. Hope this one inspires the willing to get started (a “how to” is on the making)
detect.fyi/five-lessons-i-le…
1
231
31 Aug 2023
New adversary intel, defensive resources, & collections of threats added to the free version of the Tidal platform this week. The redesigned homepage makes it easy to keep track of the top highlights
31 Aug 2023
Our new Community Edition Splash Page is only a few days old but already received its first update, as our teams published fresh content throughout the platform this week. Explore all the timely highlights on the recently redesigned home page here: app.tidalcyber.com/
2
2
620
TropChaud retweeted
24 Aug 2023
#ATTACK the latest, breaking OSINT FREE = Tidal Community Edition!
24 Aug 2023
Summarize the 130 #TTPs associated with the new #LockBit actor & tool objects added to Tidal’s free Community Edition this week: app.tidalcyber.com/share/a43…
Click the ribbon labels for more object details & any matrix cell for linked analytics, capabilities, data sources, & more!
2
4
621
TropChaud retweeted
1 Aug 2023
Today we released another round of Tidal-authored threat objects in our freely available Community Edition! The latest updates feature 6 new & 4 updated objects, and dozens of associated #TTPs. Access links to all the new content here: hubs.la/Q01ZBWCy0 #threatintel
3
5
384
27 Jul 2023
#BianLian is a trending extortion threat, a leading example of a wider landscape trend that sees many #ransomware actors emphasizing data exfil over traditional encryption attacks
BianLian actors have claimed hundreds of victims around the world during just a year of operations
1
3
9
1,263
27 Jul 2023
We added an original #mitreattack-style object for #BianLian to @TidalCyber's Community Edition, which links to 16 more new & updated objects representing key malware & tools used by BianLian operators: app.tidalcyber.com/groups/a2…
2
4
337
TropChaud retweeted
26 Jul 2023
One of the Tidal-authored threat objects recently added to our Community Edition covers #BianLian, a #ransomware-turned-data theft operation: hubs.la/Q01YZL7b0
Explore all the #mitreattack knowledge base extensions added to our free platform: hubs.la/Q01YZGRJ0
1
3
5
700