Detection of Kerberos Golden Ticket Attacks via Velociraptor: https://detect.fyi/detection-of-kerberos-golden-ticket-attacks-via-velociraptor-cfe7cc26d3eb

#kerberos #velociraptor #goldenticket

Why you should remove ‘ClawdBot’ (or whatever it’s called) right now: https://andreafortuna.org/2026/01/31/remove-clawdbot-now.html

Peeking into /proc: turning live Linux data into evidence: https://andreafortuna.org/2026/01/19/proc-filesystem

#linux #filesystem #proc

Peeking into /proc: turning live Linux data into evidence: https://andreafortuna.org/2026/01/19/proc-filesystem

#linux #filesystem #proc

What's really slowing down your incident response: https://andreafortuna.org/2026/01/19/ir-hidden-slowdown

#incidentresponse

Incident Response is a team sport: the ‘Total Football’ playbook: https://andreafortuna.org/2026/01/05/total-football-total-cybersevcurity

#incidentresponse #totalfootball #playbook

Glue employees hold teams together: https://andreafortuna.org/2025/12/30/glue-employees-hold-teams-together

#team #humanresources

Happy 2026: A Gift for Threat Hunters - 12 Weeks of Hunting Tips: https://blog.exatrack.com/Happy_2026_A_Gift_for_Threat_Hunters_12_Weeks_of_Hunting_Tips/

#threathunting

Regipy MCP: Natural Language Registry Forensics with Claude: https://medium.com/dfir-dudes/regipy-mcp-natural-language-registry-forensics-with-claude-984d378784d6

#windowsregistry #dfir

Case Studies: Building Effective Timelines with Plaso (Log2Timeline): https://medium.com/@cyberengage.org/case-studies-building-effective-timelines-with-plaso-log2timeline-55e3d299c7d1

#digitalforensics #incidentresponse

Debugging DNS response times with tshark: https://isc.sans.edu/diary/rss/32592

#dns #tshark

Learn From 2025's Most Popular Python Tutorials and Courses: https://realpython.com/popular-python-tutorials-2025/

#python #tutorial #realpython

Stanford University course, The Modern Software Developer (CS146S): https://themodernsoftware.dev/

#softwareengineering #softwaredevelopers #course

Happy New Year 2026 everyone.

This will be my 750th post and it will be my last post in 2025.

Bash is great until it isn't: https://github.com/go-monk/from-bash-to-go

#bash #go

Evil on Schedule: Investigating Malicious Windows Scheduled Tasks: https://www.thedfirspot.com/post/evil-on-schedule-investigating-malicious-windows-tasks

#scheduledtask #windows #investigation

Collection of scripts to automate the Malware Analysis process: https://github.com/ShadowOpCode/Malware-Analysis-Toolkit

#malwareanalysis #automation

AWSDoor: Persistence on AWS: https://www.riskinsight-wavestone.com/en/2025/09/awsdoor-persistence-on-aws/

#aws #persistence

Can You Run a MariaDB Cluster on a $150 Kubernetes Lab? I Gave It a Shot: https://dzone.com/articles/mariadb-cluster-on-kubernetes-lab-test

#mariadb #cluster #kubernetes

[Book] An Open Guide to Data Structures and Algorithms: https://pressbooks.palni.org/anopenguidetodatastructuresandalgorithms/

#datastructures #algorithms