Steve Turner
@beingageekCybersecurity geek. Former @Forrester. Into Legos and adding games to my steam library I’ll never play. Tweets are my own.
Similar User
@hackerxbella
@CynjaChaseC
@jeff_pollard2
@Jess_Burn_
@wiele
@BaileyBercik
@AlexFilipin
@codyfscott
@EricParizo
@MCMP_Forrester
Half-Life 2 is free to own on Steam (offer expires Nov 18th). The game is also updated for its anniversary buff.ly/48UyM5O Free offer also includes Ep 1 & 2 Happy 20th to the GOAT FPS
Check out my latest article: Enhancing Resource Access Security with Continuous Access Evaluation linkedin.com/pulse/enhancin… via @LinkedIn
Defender for Cloud Apps has added SaaS Security Posture Management :) learn.microsoft.com/en-us/defender… If you already have connected apps, you can turn it on in the portal: You can also add it when connecting an app:
Mine and @_dirkjan's @defcon talk, Abusing Windows Hello Without a Severed Hand went live yesterday. We discuss both privileged and unprivileged Windows Hello abuse. Hope you all enjoy it. youtu.be/mFJ-NUnFBac?fe…
Working on the next #EntraOps release (#HIPConf24 Edition). It will includes a status of restricted management on privileged objects. This helps to identify unprotected objects but also incompatibility by concurrent usage of RMAU and Role-assignable groups on the same object.
I just saw we already have published the key facts here redtenant.com Feel free to reach directly to Thomas or me if you have further questions
For those who can't make it, I have uploaded a bunch of resources and fully automated examples to create a bunch of Access Packages including CA policies and Logic Apps 🔥 ✅ means complete 🚧 means I'm still working on it :) ❤️ Feedback github.com/nathanmcnulty/… #MMSFlamingo
If you’re moving to Entra from Active Directory and looking for tips to help manage automating user access and entitlement, don’t miss this session with @NathanMcNulty mms2024fll.sched.com/event/1fOgn/au… #mmsflamingo @mmsmoa #mvpbuzz
@PyroTek3 talk "Gone in 60 Seconds… How Azure AD/Entra ID Tenants are Compromised" is out now. Happy Viewing! youtube.com/watch?v=w8JY1M…
🚨EDR Telemetry website is live! 🥳 I hope this makes it even easier for folks to compare the telemetry of EDR vendors and visualize their visibility gaps 🙂 ‣ Website🔗edr-telemetry.com ‣ GitHub 🔗github.com/tsale/edr-tele… **Telemetry results reflect the most recent…
I created the first draft of a website for the EDR telemetry project to help people quickly compare vendor telemetry visibility. What do you think about it? Are there any specific features you want to see for the website? Built with ChatGPT 4o with canvas (wanted to test it…
Hey y'all! @defcon has posted all talks and if you want to checkout my talk about Winning the Game of Active Directory, you can find it here along with my mighty shoulders. Thanks @wallofsheep for having me and @investigatorchi for the wonderful intro. youtu.be/M-2d3sM3I2o?si…
Exciting News on Passkeys! 🔑 We teamed up with @FIDOAlliance members, including @Google, @Apple, @Microsoft, and @Samsung to develop a new set of specifications that will allow you to import and export passkey. These specifications introduce a universal format and a secure way…
Attack graph analysis is a fascinating world. But graphs are more complicated than they appear to be. Don't be fooled by what what may appear to be a simple game of "connect the dots". In this thread: why you do not want (and cannot have) "all paths". 🧵
We finally get some description of how "adminless" on Windows 11 (now in canary insider versions, so you won't be seeing this in deployment for a while) works at a technical level. In sum, Windows executes things requiring elevation with a separate, just-in-time account:
Say Hello to Windows Administrator Protection! 🚫🔑 Windows 11’s new Administrator Protection feature is set to redefine local admin security. 🔒💻 This new feature introduces a hidden, just-in-time elevation mechanism that unlocks admin rights only when needed instead of using…
New Automated migration for Entra Authentication methods :D This guide looks awesome! Not only does it help migrate methods, it makes recommendations on strengths of each :) learn.microsoft.com/en-us/entra/id…
What a "feature drop", #MDI is adding 10 new posture recommendations. #Security #ActiveDirectory learn.microsoft.com/en-us/defender…
Remember when KnowBe4 was honest about hiring and catching North Korean attackers after they hired an attacker who started uploading malware immediately? Just like we predicted, KnowBe4 wasn't the only org this happened to, they just caught it fast. blog.knowbe4.com/how-a-north-ko…
Google’s, $GOOGL, cybersecurity unit, Mandiant, has found dozens of US companies have accidentally hired North Korean spies using fake identities as remote workers, per
Sweet! The 2024 @SANSInstitute #HolidayHack Challenge reg page just dropped this morn! Lotsa new game dynamics this year & fun hints in the artwork! Register to be notified when this year's free holiday-themed range launches Nov 11, 2024. Check. It. Out! sans.org/mlp/holiday-ha…
United States Trends
- 1. Serrano 187 B posts
- 2. #TysonPaul 88,9 B posts
- 3. #NetflixFight 46,7 B posts
- 4. #netflixcrash 8.042 posts
- 5. Shaq 5.488 posts
- 6. #buffering 7.630 posts
- 7. Rosie Perez 9.533 posts
- 8. ROBBED 80 B posts
- 9. Ramos 64,7 B posts
- 10. Cedric 16 B posts
- 11. My Netflix 54,8 B posts
- 12. Tori Kelly 2.016 posts
- 13. Jerry Jones 7.385 posts
- 14. #boxing 36,6 B posts
- 15. Christmas Day 14,2 B posts
- 16. WTF Netflix 12,8 B posts
- 17. Love is Blind 4.530 posts
- 18. The Netflix 245 B posts
- 19. $NFLX 4.671 posts
- 20. Streameast 2.662 posts
Who to follow
-
hackerxbella | Allie Mellen
@hackerxbella -
chase cunningham
@CynjaChaseC -
Jeff Pollard
@jeff_pollard2 -
Jess Burn
@Jess_Burn_ -
Stefan van der Wiele | stefan.radio | #Entra
@wiele -
Bailey Bercik - @[email protected]
@BaileyBercik -
Alexander Filipin
@AlexFilipin -
Cody Scott
@codyfscott -
Eric Parizo
@EricParizo -
Mark Phillips - Forrester (He/Him)
@MCMP_Forrester
Something went wrong.
Something went wrong.