Paul Batson 

@[email protected]
151 Followers
422 Following
45 Posts
SecOps, Detection Eng & Threat Modelling/Hunting. Husband. Dad. Veteran. Geek. Ex BSidesLondon organiser. Anti racist. LGBTQ+ Ally. He/Him.
Twitterwww.twitter.com/lazysecurity
Paul Batson Oct 1, 2024
Second BSidesLondon ticket release at 1337hrs today https://www.linkedin.com/posts/security-b-sides-london_bsidesldn2024-activity-7246787195875856384-_5dI?utm_source=share&utm_medium=member_ios
Security BSides London on LinkedIn: #bsidesldn2024

We will be releasing our second batch of tickets today at 1337hrs, all tickets to this years #BSidesLDN2024 conference are free. We aim to continue to make…

Paul Batson Sep 20, 2024
Dominic WhiteSep 20, 2024

Come watch Come watch @[email protected] & @felmoltor streaming live now! Talking about Mail in the Middle Attacks.

https://www.brucon.org/2024/streaming/

Streaming – BruCON 2024

Paul Batson Apr 13, 2024

Want to log all outbound tcp connections from a Linux host?

I had to see all outbound tcp traffic from a linux host this week. Started with tcpdump/tshark and netstat but found a much better solution which I wasn’t aware of. It uses eBPF to also allow you to see the PID & Process name that generated the traffic:

# yum install bcc-tools
# /usr/share/bcc/tools/tcpconnect >> log.txt

Paul Batson Feb 17, 2024
rexiFeb 17, 2024

My message in case I am killed:

(monologue from the movie #Navalny 2022)

Paul Batson Nov 29, 2023

Just came across this interesting project to use canaries in AD to detect domain enumeration.

https://github.com/AirbusProtect/AD-Canaries

#threatdetection #detectionengineering #SIEM

GitHub - AirbusProtect/AD-Canaries: The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory Canary objects.

The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory Canary objects. - GitHub - AirbusProtect/AD-Canaries: The pur...

GitHub
Paul Batson Sep 13, 2023
Jérôme SeguraSep 13, 2023

A malvertising campaign targeting corporate users looking to download Webex has been running for almost a week.

This blog shares the details: https://www.malwarebytes.com/blog/threat-intelligence/2023/09/ongoing-webex-malvertising-drops-batloader

#malvertising #BatLoader #DanaBot

PSA: Ongoing Webex malvertising campaign drops BatLoader

Corporate users performing Google searches for the popular conferencing software Webex are being targeted in a malvertising campaign.

Malwarebytes
Paul Batson Sep 10, 2023
Julie moved to @[email protected]Sep 7, 2023

Hey, frands. It's me, Julie. I'm back on the job market for an #IncidentResponse role though I could probably settle in to #ThreatHunting or #ThreatIntel pretty easily too.

I've got a few good leads and some great friends who are helping me look for a great fit, but I'd love to have an #InformationSecurity job thread both for me and others.

So, what have y'all got floating around your professional circles? There are a lot of #CyberSecurity folks out there looking to get #FediHired

Let's get some people some jobs!

#Jobs #GetFediHired #FediJobs

Paul Batson Jun 6, 2023
Quite enjoying getting back into amateur radio after many years away. This was me portable yesterday :)
Paul Batson May 23, 2023
Paul Batson May 23, 2023

Unfortunately I can’t make BSides Dublin this Saturday (27 May) anymore. Dm me if you could put the ticket to good use.

Please boost for reach.

#bsides #bsidesdublin

Paul Batson May 23, 2023

Unfortunately I can’t make BSides Dublin this Saturday (27 May) anymore. Dm me if you could put the ticket to good use.

Please boost for reach.

#bsides #bsidesdublin