@aptnotes profile picture
APT notes @aptnotes

otx.alienvault.com/user/aptn… keybase.io/aptnotes

Joined December 2015
  • Tweets 390
  • Following 99
  • Followers 2,645
22 Photos and videos
APT notes retweeted
Artem I. Baranov@artem_i_baranov
3 Jun 2025
Have you ever wondered what are the main sources of Windows vulns in kernel mode. I went through Microsoft's CVE portal over the past three years to find out which Windows km components have been patched most frequently - consuming company's resources. aibaranov.github.io/windrive…

Lift me up to Ring 0: what are the most vulnerable Windows drivers

Examining the statistics on the most frequently patched Windows drivers between January 2022 and May 2025

aibaranov.github.io
3
41
137
10,458
APT notes retweeted
HackerSploit@HackerSploit
13 Jan 2025
How to develop an Adversary Emulation Plan: youtu.be/1N49x1EWw7s @aptnotes

Developing An Adversary Emulation Plan

Creating an adversary emulation plan is a critical process for red ...

youtube.com
3
9
45
3,658
APT notes retweeted
Will@BushidoToken
31 Jul 2023
Incredible. CERT India published a list of file hash IOCs as an image and have also turned off right-click on their website 🤣 smh 💀
59
107
1,063
278,241
APT notes retweeted
vx-underground
@vxunderground
6 Dec 2022
When a vendor shares IOC's in an image so you can't copy paste the SHA256
13
28
357
APT notes retweeted
profdeibert@RonDeibert
6 Jul 2022
NEW: @apple announces #LockdownMode, a major change to iPhone security that promises to help high risk users other actions to hold the mercenary spyware industry to account nr.apple.com/d2I3Q1s4s0 My thread w context & details 👇

Apple expands commitment to protect users from mercenary spyware

Apple today detailed two initiatives to help protect users who may be personally targeted by sophisticated digital threats.

apple.com
4
185
379
APT notes retweeted
Raphael Satter@razhael
30 Jun 2022
For at least a decade, an interlocking set of Indian APT groups has been hacking lawyers & litigants on behalf of Western private eyes. Their goal? Winning lawsuits & arbitration battles. @specialreports takes a look at India's cyber mercenary industry. reuters.com/investigates/spe…

How mercenary hackers sway litigation battles

A trove of thousands of emails uncovered by Reuters reveals Indian cyber mercenaries hacking parties involved in lawsuits around the world – showing how hired spies have become the secret weapon of...

reuters.com
14
195
280
APT notes@aptnotes
6 Aug 2018
Just added the 500th report to #aptnotes! #infosec #DFIR
1
3
16
APT notes@aptnotes
24 Jun 2018
oh cool and it looks like our Github webhook died, off to fix that -- anywho -- we merged the tools fix from github.com/Taskr repo this morning #infosec #DFIR #aptnotes

Taskr - Overview

Taskr has 4 repositories available. Follow their code on GitHub.

github.com
1
3
APT notes@aptnotes
24 Jun 2018
apologies all for the masso backlog -- things have been crazy busy in the "things we get paid to do" category -- we are working through it and trying to sort out better forms of automation #DFIR #infosec #aptnotes
1
3
5
APT notes@aptnotes
16 Mar 2018
#aptnotes #DFIR #infosec @FireEye x.com/campuscodi/status/9747…
1
1
APT notes@aptnotes
5 Feb 2018
Dear dear #infosec vendors, here’s an idea: maybe you could make a PDF version of your reporting so it’s easier to save for posterity. I know of a group that would really appreciate not having to modify things by hand so it doesn’t look like vomit #DFIR
2
6
APT notes@aptnotes
4 Feb 2018
github.com/aptnotes/data/com… Add multiple reports Fixes #187 Fixes #186 Fixes #185 Fixes #182 Fixes #177 Fixes #176 Fixes #175 Fixes #174 Fix...

Add multiple reports · aptnotes/data@d9a638b

Fixes #187 Fixes #186 Fixes #185 Fixes #182 Fixes #177 Fixes #176 Fixes #175 Fixes #174 Fixes #173 Fixes #171 Fixes #170 Fixes #169 Fixes #163 Fixes #161

github.com
2
APT notes@aptnotes
4 Feb 2018
github.com/aptnotes/data/com… Update Readme

Update Readme · aptnotes/data@fb930eb

github.com
1
1
APT notes@aptnotes
4 Feb 2018
github.com/aptnotes/data/com… Add multiple reports Fixes #197, Fixes #196, Fixes #194, Fixes #193, Fixes #192, Fixes #191, Fixes #190, Fixes #...

Add multiple reports · aptnotes/data@b9bd66d

Fixes #197, Fixes #196, Fixes #194, Fixes #193, Fixes #192, Fixes #191, Fixes #190, Fixes #189, Fixes #188

github.com
1
1
APT notes@aptnotes
4 Feb 2018
github.com/aptnotes/data/com… updated to add tools link

updated to add tools link · aptnotes/data@384005f

github.com
4
5
APT notes@aptnotes
26 Jan 2018
#aptnotes #DFIR #infosec #Turla x.com/ncsc/status/9543560588…

NCSC UK
@NCSC
19 Jan 2018
ADVISORY: We have identified a new version of the Turla group’s Neuron malware which has been modified to evade previous detection methods. See our updated report here ncsc.gov.uk/alerts/turla-gro…
1
2
APT notes@aptnotes
18 Jan 2018
#DFIR #infosec #mobile #aptnotes @EFF @Lookout x.com/evacide/status/9540924…

This tweet is unavailable
2
APT notes retweeted
ATT&CK@MITREattack
16 Jan 2018
We've released the APT3 Adversary Emulation Plan based on ATT&CK. These plans help describe a threat group's behavior for the purposes of testing security. Special thanks to @ckorban, Doug Miller, Adam Pennington, and @its_a_feature_ for their work attack.mitre.org/wiki/Advers…
113
186
APT notes@aptnotes
13 Jan 2018
we concur x.com/RobertMLee/status/9523…

Robert M. Lee@RobertMLee
13 Jan 2018
Replying to @RobertMLee
If you are writing or consuming reports that include assessments of adversary campaigns or activity groups be sure to read the Diamond Model activeresponse.org/wp-conten…
4
APT notes@aptnotes
13 Jan 2018
please be gracious with us - we are dealing with some fun time shortage and technology issues atm - we love you, Happy New Year #infosec #DFIR #aptnotes
1
3
Load more