Jerry Bell @jerry@infosec.exchange
- Protonmail
- jerry@bell.st
Admin
Cloud CISO
Podcast: https://defensivesecurity.org
Blog: https://infosec.engineering
Twitter: @maliciouslink
#infosec #security #cybersecurity #risk #fedi22
Joined Apr 2017
One very trivial upside of the pandemic for me is that I only have to file taxes in 2020 in one state, unlike the usual 3 or 4.
I learned today that my youngest son’s prom is not going to happen this year. Sad because it was also cancelled last year, and this is his final year of high school. Cancelling is likely the right thing to do, but sad for him that it had to happen.
...and we're back. hopefully no more changes for a while.
Jerry Bell
boosted
How long does it usually take you to fall asleep?
Feel free to expand on your answer as a reply
Boost for a larger sample size 💕
Infosec.exchange is getting a new IP soon. Site will be unstable tomorrow for a while during DNS propagation.
Jerry Bell
boosted
Can't recall which feed I saw this in, but I love this approach to laptop design. If they offer the same in a 15-16" form factor, I think I've found my eventual next laptop
I hope you’re all doing well! ❤️
Jerry Bell
boosted
Yo! $DayJob is looking for to recruit security researchers, developers, engineers team leaders and more to join the team. Seriously...hit me up and I can give you more intel.
has anyone played around with ebpf? The feed of exec() and open() calls seems quite useful from a security monitoring perspective
Jerry Bell
boosted
bullshit levels are currently at 84% but fluctuating wildly
(84%) ■■■■■■■■□□
Jerry Bell
boosted
Mitigating Web Shells
This repository houses a number of tools and signatures to help defend networks against web shell malware. More information about web shells and the analytics used by the tools here is available in NSA and ASD web shell mitigation guidance Detect and Prevent Web Shell Malware.
Jerry Bell
boosted
I'm hiring two Principal Security Researchers to join my Applied Research Team at Veracode. One focused on application static analysis and auto-remediation, one focused on dynamic analysis of web apps and web APIs.
My team is fully remote always (we have team members in EU, UK, US so far), great support for education (including attending conferences), pursuing your own projects, flexible scheduling, etc.
Boosts appreciated!
More info: https://mobile.twitter.com/chriseng/status/1358900181232713728
Jerry Bell
boosted
YAML configs for:
1. NSA Events to Monitor List https://hannahsuarez.github.io/2021/Winlogbeat_NSAEventstoMonitor/
2. Events from the Windows 10 and Windows Server 2016 Security auditing and monitoring reference https://hannahsuarez.github.io/2021/Windows_10_Windows_Server_2016_Security_auditing_monitoring_reference/
3. Exploit protection events based on attack surface reduction events https://hannahsuarez.github.io/2021/ExploitProtectionEvents/
And, which Windows auditing events require failure and success logging?
https://hannahsuarez.github.io/2021/WhichEventsNeedFailureSuccessLogging/
YMMV!
I have a few more to share next week.
#security #cybersecurity #infosec #elasticsecurity #blueteam
I did not have on my bingo card “Wall Street traders monitor Reddit memes for clues to next breakout stock”
In other news, This is going to be my bug out spot soon. https://www.bestbeachgetaways.com/property-details/sunrise-beach-809/?arrival_date=&departure_date=
Not very good for a bugout spot, but it does have a nice view.
Forgot to announce that the upgrade completed successfully. Currently pruning preview cards and old remote media - freed up >150GB so far 😅
Upgrading infosec.exchange to Mastodon 3.3.0. Hold on to your hats...
Jerry Bell
boosted
Shifting Cloud Security Left — Scanning Infrastructure as Code for Security Issues
Nice overview of a number of tools (Checkov, Regula, Terraform-compliance, Terrascan, tfsec) with examples of custom check writing and more.
Jerry Bell
boosted
us pol
Dept of State says that Trump's term ends tonight at 7:49PM. Definitely a defaced website, but we can dream.
Jerry Bell
boosted
- Protonmail
- jerry@bell.st
Admin
Cloud CISO
Podcast: https://defensivesecurity.org
Blog: https://infosec.engineering
Twitter: @maliciouslink
#infosec #security #cybersecurity #risk #fedi22
Joined Apr 2017
