Mastodawn

💥Level up your threat hunting with IrisQL, our new query language for deeper, more flexible access to the Iris Investigate database.
Explore the full breakdown and start optimizing your security stack here: https://www.domaintools.com/blog/supercharge-your-threat-investigations-with-irisql
#ThreatHunting #IrisQL #Infosec #DataScience

Supercharge Your Threat Investigations with IrisQL

Introducing IrisQL — a text-based query language for Iris Investigate. Hunt threats faster with 10 real-world queries from FBI/CISA and vendor advisories.

0xCDE 3d ago

*Read it like an infomercial*

Are you tired of working with logs that contain arrays with multiple JSON like this?

Have you tried creating a new column with the value you want only to find out that this value has no fixed position in the array?

Now your problems are over! With this 5 line KQL snippet, written by a real human, you can finally have the peace of mind that all the fields are populated correctly and everything is neat inside a single JSON!

https://github.com/0x-cde/Threat-Hunting-with-KQL/blob/main/CodeSnippets/Converting-array-of-json-to-single-json.md

#kusto #kustoquery #kql #threathunting #threat_hunting #dfir #digitalforensics

Yazoul - Cybersecurity Alerts 4d ago

🟡 THREAT INTELLIGENCE

Apple Fixes iOS Flaw That Let FBI Recover Deleted Signal Messages

Vulnerability | MEDIUM

Apple has released out-of-band security updates for iPhone and iPad devices to fix a Notification Services flaw that could allow notifications marked...

Full analysis:
https://www.yazoul.net/news/article/apple-fixes-ios-flaw-that-let-fbi-recover-deleted-signal-messages

#InfoSec #ZeroDay #ThreatHunting

iOS Bug Let FBI Recover Deleted Signal Messages

Apple has released out-of-band security updates for iPhone and iPad devices to fix a Notification Services flaw that could allow notifications marked for deletion to remain stored on the device. [...]

Yazoul Security

David J. Bianco (He/Him)4d ago

I'm excited to keynote the Antisyphon #ThreatHunting Summit, a free virtual event on June 17th.

Why am I excited? Because I get the chance to re-evaluate something I proposed as one of the fundamental pillars of hunting 10 years ago!

"Is It Time to Embrace Automated Threat Hunting?"

Check out the abstract, then register at the link below:

https://www.antisyphontraining.com/event/threat-hunting-summit-keynote-is-it-time-to-embrace-automated-threat-hunting/

cirosec GmbH 5d ago

In unserem Seminar erfahren Sie, wie Sicherheitsvorfälle erkannt, bearbeitet und für forensische Untersuchungen vorbereitet werden.

Wir zeigen Ihnen, wie der ISO-27035-Standard als Leitfaden dient und welche technischen und organisatorischen Maßnahmen dabei eine Rolle spielen.

Themen im Detail:
• ISO-27035-Standard für Incident Response
• Voraussetzungen und organisatorischer Rahmen
• Incident-Handling-Prozess
• KRITIS-relevante Anforderungen und Meldepflichten
• Forensische Untersuchungen und Threat Hunting

Nach dem Seminar wissen Sie, wie Sie einen Incident-Response-Prozess etablieren und wie sie im Ernstfall richtig reagieren! 🚀

Jetzt anmelden: https://cirosec.de/trainings/incident-handling-response/

#CyberSecurity #IncidentResponse #ISO27035 #DigitalForensics #ThreatHunting #KRITIS #ITSecurity #Hackerangriff #Datenschutz #SecurityAwareness #SecurityTraining #Informationssicherheit