Mastodawn

2026-03-27 RDP #Honeypot IOCs - 2691 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
183.81.35.16 - 2283
38.76.31.20 - 216
14.236.13.46 - 33

Top ASNs:
AS18403 - 2283
AS174 - 216
AS396982 - 48

Top Accounts:
hello - 2574
Administr - 39
Test - 18

Top ISPs:
FPT Telecom Company - 2283
Cogent Communications - 216
Google LLC - 48

Top Clients:
Unknown - 2691

Top Software:
Unknown - 2691

Top Keyboards:
Unknown - 2691

Top IP Classification:
Unknown - 2610
hosting - 81

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

RDP Snitch 12h ago

2026-03-27 RDP #Honeypot IOCs - 1794 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
183.81.35.16 - 1522
38.76.31.20 - 144
14.236.13.46 - 22

Top ASNs:
AS18403 - 1522
AS174 - 144
AS396982 - 32

Top Accounts:
hello - 1716
Administr - 26
Test - 12

Top ISPs:
FPT Telecom Company - 1522
Cogent Communications - 144
Google LLC - 32

Top Clients:
Unknown - 1794

Top Software:
Unknown - 1794

Top Keyboards:
Unknown - 1794

Top IP Classification:
Unknown - 1740
hosting - 54

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

RDP Snitch 12h ago

2026-03-27 RDP #Honeypot IOCs - 897 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
183.81.35.16 - 761
38.76.31.20 - 72
14.236.13.46 - 11

Top ASNs:
AS18403 - 761
AS174 - 72
AS396982 - 16

Top Accounts:
hello - 858
Administr - 13
Test - 6

Top ISPs:
FPT Telecom Company - 761
Cogent Communications - 72
Google LLC - 16

Top Clients:
Unknown - 897

Top Software:
Unknown - 897

Top Keyboards:
Unknown - 897

Top IP Classification:
Unknown - 870
hosting - 27

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

Who Let The Dogs Out 🐾1d ago

Небольшая подборка ресурсов, где можно получить практический опыт и необходимые знания для Blue Team специалистов-2

• CyberDefenders (https://cyberdefenders.org/blueteam-ctf-challenges/?type=challenges&status=&labtype=&difficulty=&categories=&tactics=&sort=&q=) — платформа для комплексного обучения Blue Team. Бесплатно доступно выполнение различного рода задач: расследование инцидентов (даются архивы с логами) и сетевая криминалистика (дампы трафика в pcap). Есть задания на разбор инцидентов в Windows, Linux и Android.

• TryHackMe (https://tryhackme.com/room/jrsecanalystintrouxo) — стоит обратить внимание на этот материал: SOC Level 1 (https://tryhackme.com/path/outline/soclevel1), SOC Level 2 (https://tryhackme.com/path/outline/soclevel2) и Security Engineer. (https://tryhackme.com/path/outline/security-engineer-training)

#Blue_Team #blueteam #infosec #laboratory #training

Dive into Blue Team CTF Challenges - CyberDefenders

Ready to tackle Blue Team CTF challenges? Join CyberDefenders for hands-on experiences and expert guidance to sharpen your cybersecurity skills and conquer blue team tasks.

Who Let The Dogs Out 🐾1d ago

Небольшая подборка ресурсов, где можно получить практический опыт и необходимые знания для Blue Team специалистов-1.

• codeby.games (https://codeby.games/) — специализируется на наступательной безопасности, платформа абсолютно бесплатна.

• Dfir-Dirva (https://training.dfirdiva.com/listing-category/dfir-blue-team-ctfs) — сборник бесплатного и открытого материала, который включает в себя учебные лаборатории и полноценные задачи для подготовки blue team.

• Malware-Traffic-Analysis.net (https://www.malware-traffic-analysis.net/) — хранилище заданий и викторин по анализу трафика.

• Cybrary (https://app.cybrary.it/) — платформа для обучения blue team на практике. Бесплатная подписка предоставляет полный доступ к виртуальным машинам с различными конфигурациями (сканеры уязвимостей, SIEM, TIP и другое).

• Letsdefend (https://app.letsdefend.io/training) — учебная платформа с кучей учебного материала, курсов и доступных лабораторных. Весь контент в соответствии с MITRE ATT&CK.

#Blue_Team #blueteam #infosec #laboratory #training

ХакерЛаб

RDP Snitch 1d ago

2026-03-26 RDP #Honeypot IOCs - 4728 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
183.81.35.16 - 4176
143.198.111.35 - 372
194.164.107.5 - 30

Top ASNs:
AS18403 - 4176
AS14061 - 384
AS396982 - 36

Top Accounts:
hello - 4560
Administr - 42
Test - 33

Top ISPs:
FPT Telecom Company - 4176
DigitalOcean, LLC - 384
Google LLC - 36

Top Clients:
Unknown - 4728

Top Software:
Unknown - 4728

Top Keyboards:
Unknown - 4728

Top IP Classification:
Unknown - 4302
hosting & proxy - 372
hosting - 54

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

RDP Snitch 1d ago

2026-03-26 RDP #Honeypot IOCs - 3152 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
183.81.35.16 - 2784
143.198.111.35 - 248
194.164.107.5 - 20

Top ASNs:
AS18403 - 2784
AS14061 - 256
AS396982 - 24

Top Accounts:
hello - 3040
Administr - 28
Test - 22

Top ISPs:
FPT Telecom Company - 2784
DigitalOcean, LLC - 256
Google LLC - 24

Top Clients:
Unknown - 3152

Top Software:
Unknown - 3152

Top Keyboards:
Unknown - 3152

Top IP Classification:
Unknown - 2868
hosting & proxy - 248
hosting - 36

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

RDP Snitch 1d ago

2026-03-26 RDP #Honeypot IOCs - 1576 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
183.81.35.16 - 1392
143.198.111.35 - 124
194.164.107.5 - 10

Top ASNs:
AS18403 - 1392
AS14061 - 128
AS396982 - 12

Top Accounts:
hello - 1520
Administr - 14
Test - 11

Top ISPs:
FPT Telecom Company - 1392
DigitalOcean, LLC - 128
Google LLC - 12

Top Clients:
Unknown - 1576

Top Software:
Unknown - 1576

Top Keyboards:
Unknown - 1576

Top IP Classification:
Unknown - 1434
hosting & proxy - 124
hosting - 18

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

Simon Roses Femerling 1d ago

You prefer Offensive (Red) or Defensive (Blue) AI Agents? #AgenticAI #AI #redteam #blueteam

BSidesLuxembourg 1d ago

Just Announced for BSides Luxembourg 2026!
𝗧𝗛𝗘 𝗦𝗣𝗬 𝗪𝗛𝗢 𝗟𝗢𝗚𝗚𝗘𝗗 𝗠𝗘 - 𝗪𝗛𝗘𝗡 𝗬𝗢𝗨𝗥 𝗫𝗗𝗥 𝗝𝗢𝗜𝗡𝗦 𝗧𝗛𝗘 𝗔𝗧𝗧𝗔𝗖𝗞𝗘𝗥𝗦 - Melina Phillips(@tx_princess )

Melina Phillips https://www.linkedin.com/in/melinaphillips-cissp/ is an Offensive Security Engineer with over 10 years of IT experience and a strong background in security operations and incident detection. She specializes in adversary simulation and endpoint compromise, bringing practical, real-world insights to modern attack and defense strategies.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https:// 2026.bsides.lu/tickets/
📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BsidesLuxembourg #CyberSecurity #XDR #ThreatDetection #BlueTeam #OffensiveSecurity