Passionate about all things cyber security. MITRE ATT&CK is my jam.
Joined July 2016
- Tweets 3,940
- Following 1,184
- Followers 957
- Likes 10,777
274 Photos and videos
Pinned Tweet
18 Oct 2019
"Cyber Knight Oath":
The internet is for everyone, to be used without fear. We stand up to the malicious. We stop those who would ransom. We never give up against any threat. For we are the Cyber Knights.
1
2
13
1 Nov 2024
The Technique Inference Engine was a great experience and project. Really expanded our abilities using @MITREattack . Here is my journey on the project.
googlecloudcommunity.com/gc/…
130
24 Oct 2024
So I have not posted here in a long time. But going to my fifth @MITREattack conference reminded me how important everyone i follow on here has been. Despite having less time and such I want to make an effort to maintain this account again.
1
124
22 Aug 2023
Trance remixes of the Oppenheimer soundtrack are my new work favorites..lol
1
1
187
Ivan Ninichuck retweeted
14 Aug 2023
It's back to school time, and adversaries are taking advantage! If you support higher education or know someone who does, check out our blog on an email campaign targeting a university. Infrastructure pivoting suggests this could affect multiple orgs. redcanary.com/blog/email-acc…
8
27
5,822
Ivan Ninichuck retweeted
31 Jul 2023
We'll be offering free virtual registration to ATT&CKCon 4.0 in the coming weeks, but would you like to join us Oct 24-25 in McLean, VA? Ticket sales start this Thursday, 8/3, at 12:30pm EDT/1630 UTC and will be $495. We'll be sharing the link here and on our other social media!
19
67
20,037
29 Jul 2023
So apparently I wasn't paying attention to the fact that the app icon on this app was going to change. I saw a random "new app" called X and assumed malware downloaded on my phone. I uninstalled, then went, oops.
198
Ivan Ninichuck retweeted
27 Jul 2023
Fucking love seeing my frens win. My brilliant friend @megan_roddie wrote a book!! Preordered, can’t wait to crack into this puppy.
9
23
310
23,707
Ivan Ninichuck retweeted
27 Jul 2023
We've updated the Elastic Container Project to @elastic 8.9.0. Uses a shell script to deploy Elasticsearch, Kibana, and Fleet server. Useful for detection engineering tests, checking out malware capabilities, sandboxes, or other data analysis use cases. github.com/peasead/elastic-c…
1
14
48
5,401
26 Jul 2023
This is going to be fantastic 😊
25 Jul 2023
We are thrilled to announce our ATT&CKcon 4.0 keynote speaker, Runa Sandvik!
@runasand founded @GranittHQ, where she works to protect journalists and other at-risk people globally. She's also an ATT&CK contributor!
Tickets will be announced soon for our 10/24-25 conference.
1
220
26 Jul 2023
Me explaining to students they will learn the internal operations of Windows.
1
1
179
23 Jul 2023
Smoking hookah and studying EDR Evasion... perfect Saturday night.
2
158
Ivan Ninichuck retweeted
18 Jul 2023
Evading EDR, by Matt Hand, gives an inside look look at how Endpoint Detection & Response agents pinpoint adversary activity. Learn the ways each sensor component collects data, how to design an EDR, & how to evade one. Pre-order at 30% off w/ code GOTCHA: nostarch.com/evading-edr
8
350
1,518
250,478
✨detection-and-response-pipeline 🏗
A compilation of suggested tools/services for each component in a D&R pipeline, along with real-world examples. The purpose is to create a reference hub for designing effective threat detection and response pipelines.
github.com/0x4D31/detection-…
2
44
151
13,326
Ivan Ninichuck retweeted
10 Jul 2023
.@redcanary recently helped create an expansion deck for Backdoors & Breaches! This is an awesome game to help learn incident response. Join my teammates plus @BanjoCrashland from @BHinfoSecurity at a webinar on July 13 to learn more! zoom.us/webinar/register/WN_…
1
10
55
7,817
Ivan Ninichuck retweeted
5 Jul 2023
🚨I'm starting a new initiative where I share DFIR-related artifacts along with a short blog for context. My goal is to help ppl, especially newcomers, learn from real attacks.
More info in the resources below:
Repo: buff.ly/3NGf2J0
First blog: buff.ly/3NEWzwx
11
101
352
35,255
Ivan Ninichuck retweeted
3 Jul 2023
There is a lot of hype around AI and cyber security, but what we really need is detail on specific use cases. I really enjoyed this latest @Mandiant blog that outlines specific examples where AI has helped (AND its limitations). mandiant.com/resources/blog/…
1
16
61
6,607
24 Jun 2023
Nothing like smoking hookah while reading a good book on the global competition in AI.
127
Ivan Ninichuck retweeted
20 Jun 2023
Update on 'Azure AD Attack & Defense Playbook'. We (@Thomas_Live, @PitkarantaM & me) have added the updates on the AADSCA solution:
- Coverage of two new AAD endpoints: 'Default Settings' & 'Admin Consent Policy Settings'
- MS Sentinel integration (Playbook & Analytic rule)
2
33
113
11,810
Ivan Ninichuck retweeted
20 Jun 2023
I think an "ATT&CK Mapper" role should exist. Where a person's sole job is to map rules to Att&ck. That shit is hard 😂
15
12
111
17,118