imlordoftherings

@[email protected]
542 Followers
500 Following
625 Posts
putzing around in the logs
githubhttps://github.com/joshnck
twitterhttps://twitter.com/imlordofthering
imlordoftheringsDec 1, 2024
The Taggart InstituteNov 19, 2024

New Course: Automated Detection with Sigma

Two courses in one week?!? We're so excited to share with you a new course that Faculty member @Imlordofthering has been working hard on for about a year now!

Automated Detection with Sigma is an introduction to using and deploying Sigma rules in a Detection as Code design. You'll learn how to read and write Sigma rules, deploy a Splunk SIEM. convert your rules to the Splunk Processing Language, and build the infrastructure to automatically convert new Sigma rules to saved and scheduled searches.

This is a hot topic and we think you'll find that it useful in both lab and enterprise environments.

Go start learning!

https://taggartinstitute.org/p/detection-with-sigma

Show threadimlordoftheringsJul 4, 2024
@andrei_chiffa @bontchev @mttaggart @GossiTheDog I saw quite a few English and Russian posts from blogs that were compromised from the same format. They each had links to sometimes casinos, other times to other WordPress sites that looked compromised. My guess is some SEO scamming.
Show threadimlordoftheringsJul 3, 2024

@bontchev @mttaggart @GossiTheDog

"вдолдонитесь" also yields some good hits for clearly compromised blogs:

http://www.concordia-mm.org/wordpress/premialnye-predlozheniia-kartezhnogo-zavedeniia/
https://www.industriebusinesssolutions.com/vodiashchie-dostizheniia-onlain-stavok/
https://peninsulacorpfin.com/betting-chto-sie-takovo-prostymi-obeshchaniiami-vo-motosporte-i-arbitrazhe-traffika-piatnadtsat-sposobov-zarabotat-na-bettinge/
https://dogbehavior.ro/2023/11/30/osnovnye-dostizheniia-onlainovyi-stav/

It seems that this has been going on for a while.

Show threadimlordoftheringsJul 3, 2024

@GossiTheDog @mttaggart

I'm giving this attack a themesong:

https://www.youtube.com/watch?v=6qtFXEvzQPc

Аюшки

YouTube
Show threadimlordoftheringsJul 3, 2024

@GossiTheDog @mttaggart

The rabbit hole goes deeper.

Google search: `intext:"аюшки?" blog`

You'll find blogs like these ones:

http://www.bhirudhospital.com/azartnye-dialogovyi-kody-v-vidakh-interaktivnyi-igornyi-dom/
https://www.valerialaureiro.es/generalbas-otveta-banknot-v-onlain-igornyi-dom/
https://falconfreight.com/kak-vozvratit-dengi-cherez-brokera-deltsa-naibolee-a-takzhe-besplatno-arzhany-vozmite-vc-ru/
https://han55.com/2023/09/11/naskolko-mozhno-obnalichit-dengi-vo-luchshem-zdanii-dialogovyi/
https://www.lightingretrofitters.com/naskolko-mozhno-obnalichit-arzhany-vo-azartnom-zdanii-interaktivnyi/
https://bibseminarbuc.ro/?p=908

Азартные диалоговый-коды в видах интерактивный-игорный дом – Bhirud Hospital

Show threadimlordoftheringsJan 5, 2024

@mttaggart I have a similar story with an entirely different lesson.

When I was in elementary school I heard that the choir was going to my favorite amusement park at the end of the year. I hated singing and up until this point in my life I never wanted anything to do with it. But... amusement parks have a way of changing the minds of younglings.

I never bothered to read the lyrics/music for any of the songs we sang. I kind of just listened to what other people were singing and tried my best to copy the words. I was probably a half second behind on everything.

Long story short, I ended up quitting just a month or two in because the distant promise of an amusement park trip was not enough motivation to tolerate something I didn't like.

Show threadimlordoftheringsMar 31, 2023
@wrentreeco I miss that team so much
imlordoftheringsFeb 22, 2023
HorkosFeb 22, 2023
“maybe the real cyberwar was all the bad takes online proclaiming CYBERWAR” (2023)
imlordoftheringsFeb 8, 2023
SANS Internet Storm Center - SANS.edu - Go Sentinels!Feb 8, 2023
Simple HTML Phishing via Telegram Bot #phishing #telegram https://i5c.us/d29528
imlordoftheringsFeb 8, 2023
How much time spent making PowerPoint presentations is too much?