@PowerShellFYI profile picture
Powershell.fyi @PowerShellFYI
Joined May 2017
  • Tweets 100
  • Following 12
  • Followers 25
4 Photos and videos
Pinned Tweet
Powershell.fyi@PowerShellFYI
27 Jun 2019
APT32 , DEV-0054 or OceanLotus campaigns 2019 powershell.fyi/dev-0054-apt3… #apt32 #APT #OceanLotus #backdoor #implants #EDR #Mitre #malicious #blueteam #CyberAttack #cybersecurity
2
7
Dont forget to enable Microsoft Edge in #WSUS
2
WDigest #credential #harvesting powershell.fyi/wdigest-crede… #Analysis #Mitigations #Detection #EDR #AntiVirus #ATP #CurrentControlSet #administrator #exploits #WDigest #LSASS #cleartext #credentials
Possible EoP via the Text Services Framework powershell.fyi/possible-eop-… #ProjectZero #Google #EoP #TextServicesFramework #Antivirus #EDR #CTF
Remote code execution vulnerabilities (CVE-2019-1181 and CVE-2019-1182) in Remote Desktop Services on Windows7, Server 2008 R2,2012 R2, Windows10 powershell.fyi/august-2019-r… #RDP #CVE #Microsoft #Intel #threatintel #Windows #Advancedhunting #NLA #vulnerable #inthewild #exploit
#Operation #Soft #Cell powershell.fyi/operation-sof… #apt10 #China #Chopper #attack #RAT #Trojan #Telco #CDR #Web #Shell #threatintel #C2 #MITRE #Cyber #Security #InfoSec #Redteam #blueteam #twitter #nation #Detection #EDR #Advanced #hunting #ntbscan #Suspicious #tomcat #httpd
1
How to #Onboard machines to #Microsoft #Defender #ATP via #Intune powershell.fyi/onboard-machi… #Desktop #Intune #ATP #Azure #portal #howto #microsoft #it #ITSM #Sysadmin #lazy #trick #deployment #Configuration #MassDeployment
#Zacinlo (#Detrahere) #rootkit powershell.fyi/zacinlo-detra… #trojan #malware #Win32 #SquareNet #s5Mark #MSRT #HTTP #HTTPS #FTP #SMTP #adware #malwaremustdie #detection #response
#Motivated #miners #attackers who take advantage of #tools, #techniques, and #procedures (#TTPs) developed by #advanced #threat #actors to spread #unwanted #cryptocurrency #mining powershell.fyi/motivated-min… #bitcoin #altcoin #cyberattacks #BlackSquid #XMRig #Meralifea #EDR #ATP
1
Powershell.fyi retweeted
Powershell.fyi@PowerShellFYI
27 Jun 2019
APT32 , DEV-0054 or OceanLotus campaigns 2019 powershell.fyi/dev-0054-apt3… #apt32 #APT #OceanLotus #backdoor #implants #EDR #Mitre #malicious #blueteam #CyberAttack #cybersecurity
2
7
Powershell.fyi retweeted
Powershell.fyi@PowerShellFYI
27 Jun 2019
Wormable RCE vulnerability in RDP bluekeep powershell.fyi/wormable-rce-…
1
Powershell.fyi retweeted
Powershell.fyi@PowerShellFYI
4 Jul 2019
mimikittenz is a post-exploitation powershell tool that utilizes the Windows function ReadProcessMemory() powershell.fyi/mimikittenz/ #mimikatz #Kiwi #hash #password #security #securitytools #redteam #logonpasswords #sekurlsa #lsa #ntlm #debug #infosec #Crypto #Events #Terminal
2
2
#ALPC #local #privilege #elevation powershell.fyi/alpc-local-pr… #APT33 #APT34 #Shamoon #wiper #iran #oilrig #cybercrime #cybersecurity #infosec #malware #vulnerability #Antivirus #Windows #WindowsDefender #blueteam #risk #Remediation #cyberhygiene #baseline #trojans #apt10
1
#List of #Default #Credentials powershell.fyi/default-crede… #3COM #AMI #Administrator #guest #Alcatel #Cisco #CISCO15 #Cobalt #Comcast #DLink #Datacom #Dell #EMC #F5 #FatWire #Freetech #Fujitsu #Gandalf #Gericom #Google #urchin #broadband #HP #Huawei #IBM #Lucent #mMmM #MySQL
#Disable '#Domain #controller: #Allow #server #operators to #schedule #tasks' powershell.fyi/disable-domai… #risk #Remediation #SYSTEM #HowTo
#How to #set '#Remote #Desktop #security #level' to '#TLS' powershell.fyi/how-to-set-re… #Windows #connections #RDP #GroupPolicy #Terminal #Tcp #TLS #authentication #Remediation #risk #Defender #regedit #BaseLine #HowTo
1
APT32 , DEV-0054 or OceanLotus campaigns 2019 powershell.fyi/dev-0054-apt3… #apt32 #APT #OceanLotus #backdoor #implants #EDR #Mitre #malicious #blueteam #CyberAttack #cybersecurity #China #Panda #offensivesecurity #Report #cybercrime #CyberAttack
Powershell.fyi@PowerShellFYI
27 Jun 2019
APT32 , DEV-0054 or OceanLotus campaigns 2019 powershell.fyi/dev-0054-apt3… #apt32 #APT #OceanLotus #backdoor #implants #EDR #Mitre #malicious #blueteam #CyberAttack #cybersecurity
badrabbit #Ransomware #Analysis #Impact #Mitigation #Detection powershell.fyi/badrabbit/ #badrabbit #apt #vulnerability #infosec #Microsoft #redteam #blueteam #infosecnews #cybersecurity #Analysis #russia #ThreatIntelligence #threatintel
WannaCrypt Analysis , Impact , Mitigations & Detection details powershell.fyi/wannacrypt/ #rdp #eternalblue #apt #vulnerability #infosec #0day #CVE #news #patch #windows #Microsoft #rce #redteam #blueteam #infosecnews #cybersecurity
3
2
Dont forget to patch #bluekeep vuln powershell.fyi/wormable-rce-… #rdp #bluekeep #apt #vulnerability #infosec #0day #CVE #news #patch #windows #Microsoft #rce #redteam #blueteam #infosecnews #cybersec

Powershell.fyi@PowerShellFYI
27 Jun 2019
Wormable RCE vulnerability in RDP bluekeep powershell.fyi/wormable-rce-…
Load more