Chris DiSalle  

@[email protected]
371 Followers
265 Following
93 Posts

Nerdy shit and good vibes.
Technical Lead, Incident Response @ Cisco Talos Intelligence Group

#hacking, #dfir, #redteam, #blueteam, #coding, #3dprinting, #vanlife, #camping

Twitterhttps://twitter.com/chrisdfir
LinkedInhttps://www.linkedin.com/in/chrisdisalle
GitHubhttps://github.com/chrisdfir
Chris DiSalle  Apr 20, 2023
Come swing by the booth and say hey If you are headed to #RSAC next week. Be prepared for nerdy discussions.
Chris DiSalle  Dec 24, 2022
PierreCDec 22, 2022
Cool thing happened at work yesterday. I was notified that I won a "beacon" award, this is an award that leaders are nominated for by their teams. This is an award only approved for 1% of the people leaders in the company. I am exceptionally humbled and very thankful to my team for nominating me and writing all of the great things they did as part of the submission process. I will continue to strive to improve daily, but very proud of where we are as a team and the excellent future we have made.
Chris DiSalle  Dec 14, 2022

The inaugural 2022 Talos Year in Review was released today! With the detail that went into this report, you don't want to sleep on it. Check it out in the link below. #dfir #blueteam #threatintel #talos

https://blog.talosintelligence.com/talos-year-in-review-2022/

Talos Year in Review 2022

We expect this data-driven story will shed some insight into Cisco’s and the security community’s most notable successes and remaining challenges. As these Year in Review reports continue in the future, we aim to help explain how the threat landscape changes from one year to the next.

Cisco Talos Blog
Chris DiSalle  Dec 14, 2022
CountZ3r0Oct 28, 2022
I got to be a guest on Talos Takes! Talking about some of the best free ways to up your security learning game! #blueteamvillage #talos #defcon
https://www.buzzsprout.com/2018149/11586703
The best (and free) ways to improve your cybersecurity skills - Talos Takes

To wrap up Cybersecurity Awareness Month, we're looking at the best, and free, ways to improve your security skills. Jason Kirkland and David Roman from Cisco Talos Incident Response join Jon to talk about the websites, YouTube channels, social me...

Buzzsprout
Chris DiSalle  Dec 12, 2022
Just used #ChatGPT to discover information about my wife's family ancestry. Turns out that lineage goes deep into the Sassanian Empire and Persian royalty about 1800 years ago or so. Sometimes the internet is cool.
Chris DiSalle  Dec 8, 2022
The Taggart InstituteDec 7, 2022

Friends, we're thrilled to finally announce the launch of our first paid course!

Python for Defenders, Pt. 2, is out now! $14.99 USD.

This course builds on the free PFD1 and examines how to use #Python and #Jupyter Notebooks to analyze forensic and logging data to detect and understand malicious activity.

The course also examines the craft of writing Notebooks for use in a defense team, from writing style to user interface design.

We hope you'll love this course, and all the others available at the Institute.

#InfoSec #CyberSecurity #BlueTeam

https://taggartinstitute.org/p/python-for-defenders-pt2

Python for Defenders, Pt. 2

Code. Detect. Defend.

Chris DiSalle  Nov 28, 2022
Swapna KrishnaNov 28, 2022
If you need something to put on in the background, NASA’s #Artemis livestream is absolutely spectacular right now. Yes, that’s the Earth and the moon. https://video.ibm.com/channel/b4dEcL3bJKW #space #science #nasa
NASA Artemis I LIVE

NASA Artemis I Live This is a live, low-resolution video feed from cameras on NASA’s Orion spacecraft as it accomplishes the Artemis I mission. Viewers will see the Artemis logo or the last frame of good video data if the spacecraft is out of range of its communications network. Viewers may see what appears to be a black screen when the vehicle is in darkness. There is no audio

IBM Watson Media
Chris DiSalle  Nov 25, 2022
Rob PomeroyNov 25, 2022

Could I tempt you to boost this post, or get involved in a project to customise Linux for users with special needs/learning difficulties? I have two such children. Adults now (18). I want to do something for my boys and for people like them. 🙂❤️

I've already done a bit, using Ansible, with AlmaLinux and Ubuntu: https://github.com/robpomeroy/BrightOS

Please spread the word - I'm sure someone out there would love to get involved!

#SpecialNeeds #Linux #Education #NonProfit

GitHub - robpomeroy/BrightOS: This open source repository contains an Ansible playbook for customising Linux to help users with a learning disability.

This open source repository contains an Ansible playbook for customising Linux to help users with a learning disability. - GitHub - robpomeroy/BrightOS: This open source repository contains an Ansi...

GitHub
Chris DiSalle  Nov 23, 2022
BSides Orlando - September 26-27, 2025Nov 23, 2022
📯 Thank you to everyone who made BSides Orlando 2022 a grand celebration of these unprecedented times. Farewell, for now, and fare thee well! 🐊🛡️
Chris DiSalle  Nov 23, 2022

#DFIR #Threathunting Tip

When performing analysis to hunt for a specific MITRE ATT&CK technique, gathering information on potential tools, commands, and arguments in advance can be highly beneficial. One method that produces quick wins is to search that technique on GitHub where you can find basic detection logic from Red Canary, SIGMA, Swimlane, etc.


- Search all repositories on GitHub for technique (e.g. T1083)
- Switch search to ‘Code’ and Language to ‘Markdown’
- Sort by ‘Recently indexed’
- Review and integrate top findings into hunt
- Profit