2025-06-21 RDP #Honeypot IOCs - 42807 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 27744
14.225.202.191 - 12240
157.230.248.35 - 2610

Top ASNs:
AS11427 - 27744
AS135905 - 12240
AS14061 - 2631

Top Accounts:
hello - 42624
Administr - 42
Test - 18

Top ISPs:
Charter Communications Inc - 27744
Vietnam Posts and Telecommunications Group - 12240
DigitalOcean, LLC - 2631

Top Clients:
Unknown - 42807

Top Software:
Unknown - 42807

Top Keyboards:
Unknown - 42807

Top IP Classification:
Unknown - 40098
hosting - 2703
proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/FmKV93nC

#CyberSec #SOC #Blueteam #SecOps #Security

2025-06-21 RDP #Honeypot IOCs - 42805 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 27742
14.225.202.191 - 12240
157.230.248.35 - 2610

Top ASNs:
AS11427 - 27742
AS135905 - 12240
AS14061 - 2631

Top Accounts:
hello - 42622
Administr - 42
Test - 18

Top ISPs:
Charter Communications Inc - 27742
Vietnam Posts and Telecommunications Group - 12240
DigitalOcean, LLC - 2631

Top Clients:
Unknown - 42805

Top Software:
Unknown - 42805

Top Keyboards:
Unknown - 42805

Top IP Classification:
Unknown - 40096
hosting - 2703
proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/nmsd8fBW

#CyberSec #SOC #Blueteam #SecOps #Security

2025-06-21 RDP #Honeypot IOCs - 42803 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 27740
14.225.202.191 - 12240
157.230.248.35 - 2610

Top ASNs:
AS11427 - 27740
AS135905 - 12240
AS14061 - 2631

Top Accounts:
hello - 42620
Administr - 42
Test - 18

Top ISPs:
Charter Communications Inc - 27740
Vietnam Posts and Telecommunications Group - 12240
DigitalOcean, LLC - 2631

Top Clients:
Unknown - 42803

Top Software:
Unknown - 42803

Top Keyboards:
Unknown - 42803

Top IP Classification:
Unknown - 40094
hosting - 2703
proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/ZqSZq5mh

#CyberSec #SOC #Blueteam #SecOps #Security

2025-06-21 RDP #Honeypot IOCs - 42801 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 27738
14.225.202.191 - 12240
157.230.248.35 - 2610

Top ASNs:
AS11427 - 27738
AS135905 - 12240
AS14061 - 2631

Top Accounts:
hello - 42618
Administr - 42
Test - 18

Top ISPs:
Charter Communications Inc - 27738
Vietnam Posts and Telecommunications Group - 12240
DigitalOcean, LLC - 2631

Top Clients:
Unknown - 42801

Top Software:
Unknown - 42801

Top Keyboards:
Unknown - 42801

Top IP Classification:
Unknown - 40092
hosting - 2703
proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/jdVFPH4b

#CyberSec #SOC #Blueteam #SecOps #Security

2025-06-21 RDP #Honeypot IOCs - 28534 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 18492
14.225.202.191 - 8160
157.230.248.35 - 1740

Top ASNs:
AS11427 - 18492
AS135905 - 8160
AS14061 - 1754

Top Accounts:
hello - 28412
Administr - 28
Test - 12

Top ISPs:
Charter Communications Inc - 18492
Vietnam Posts and Telecommunications Group - 8160
DigitalOcean, LLC - 1754

Top Clients:
Unknown - 28534

Top Software:
Unknown - 28534

Top Keyboards:
Unknown - 28534

Top IP Classification:
Unknown - 26728
hosting - 1802
proxy - 4

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/DrbKmz8F

#CyberSec #SOC #Blueteam #SecOps #Security

2025-06-21 RDP #Honeypot IOCs - 14267 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 9246
14.225.202.191 - 4080
157.230.248.35 - 870

Top ASNs:
AS11427 - 9246
AS135905 - 4080
AS14061 - 877

Top Accounts:
hello - 14206
Administr - 14
Test - 6

Top ISPs:
Charter Communications Inc - 9246
Vietnam Posts and Telecommunications Group - 4080
DigitalOcean, LLC - 877

Top Clients:
Unknown - 14267

Top Software:
Unknown - 14267

Top Keyboards:
Unknown - 14267

Top IP Classification:
Unknown - 13364
hosting - 901
proxy - 2

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/10SgDg75

#CyberSec #SOC #Blueteam #SecOps #Security

Here comes a sample video that’s part of my Linux & Windows System Hardening Course on Learnfly™. This video is a promotional video to help students get some idea of what the course is supposed to be about. You can view the video from here:

https://rumble.com/v6v41u3-sample-video-learnfly-course-system-boot-hardening.html?e9s=src_v1_upp_a

To access the course itself, you can purchase it for $30 from here:

https://www.learnfly.com/posts/course_details/hardening-windows-linux-systems

Happy Learning.

#cybersecurity #cyber #security #computer #informationsecurity #cybersec #infosec #blueteam #defenses #cyberdefense #cyber #boot #howto #hardening

ah, damn. certstream.calidog.io is broken. #cybersecurity #blueteam #threatintel #dns #certificatetransparency

2025-06-20 RDP #Honeypot IOCs - 48438 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 26874
14.225.202.191 - 12162
172.236.141.242 - 6546

Top ASNs:
AS11427 - 26874
AS135905 - 12162
AS63949 - 6546

Top Accounts:
hello - 48324
Domain - 27
Test - 24

Top ISPs:
Charter Communications Inc - 26874
Vietnam Posts and Telecommunications Group - 12162
Akamai Technologies, Inc. - 6546

Top Clients:
Unknown - 48438

Top Software:
Unknown - 48438

Top Keyboards:
Unknown - 48438

Top IP Classification:
Unknown - 39132
hosting - 9294
mobile - 12

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/E7H4CQ4a

#CyberSec #SOC #Blueteam #SecOps #Security

2025-06-20 RDP #Honeypot IOCs - 32292 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 17916
14.225.202.191 - 8108
172.236.141.242 - 4364

Top ASNs:
AS11427 - 17916
AS135905 - 8108
AS63949 - 4364

Top Accounts:
hello - 32216
Domain - 18
Test - 16

Top ISPs:
Charter Communications Inc - 17916
Vietnam Posts and Telecommunications Group - 8108
Akamai Technologies, Inc. - 4364

Top Clients:
Unknown - 32292

Top Software:
Unknown - 32292

Top Keyboards:
Unknown - 32292

Top IP Classification:
Unknown - 26088
hosting - 6196
mobile - 8

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/7iRTKesC

#CyberSec #SOC #Blueteam #SecOps #Security

2025-06-20 RDP #Honeypot IOCs - 16146 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 8958
14.225.202.191 - 4054
172.236.141.242 - 2182

Top ASNs:
AS11427 - 8958
AS135905 - 4054
AS63949 - 2182

Top Accounts:
hello - 16108
Domain - 9
Test - 8

Top ISPs:
Charter Communications Inc - 8958
Vietnam Posts and Telecommunications Group - 4054
Akamai Technologies, Inc. - 2182

Top Clients:
Unknown - 16146

Top Software:
Unknown - 16146

Top Keyboards:
Unknown - 16146

Top IP Classification:
Unknown - 13044
hosting - 3098
mobile - 4

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/dGQr11e3

#CyberSec #SOC #Blueteam #SecOps #Security

Support for #STIX and #TAXII in #IntelMQ

For collecting and processing #threatintel feeds, #IntelMQ is a good tool. Simple to deploy and configure, used by several #CSIRT teams.
For long time, it was sufficient for me, however, with recent changes in #ESET #ThreatIntelligence feeds, I realized that IntelMQ lacks support for TAXII protocol and STIX language and objects...

After hours of studying the STIX/TAXII documentation, I decided to develop some basic support for collecting the feeds from TAXII servers and parsing the STIX indicators objects.
This way, IntelMQ can process not only the current #ETI feeds, but also some other sources.

The commits are currently waiting in pull request in IntelMQ GitHub:
https://github.com/certtools/intelmq/pull/2611

#cybersecurity #development #blueteam #cyberdefense #soc #siem

exercise: senior leadership insists on installing software without a business justification (e.g., games). What do you do?

#cybersecurity #blueteam

New Open-Source Tool Spotlight 🚨🚨🚨

Nosey Parker is like a precision `grep` for secrets. It scans files, directories, Git histories, and GitHub repos, using 186 regex patterns to detect sensitive info with high accuracy. Outputs are deduplicated to reduce noise, and it scales up to 20TB inputs at GB/s speeds. #CyberSecurity #OpenSource

🔗 Project link on #GitHub 👉 https://github.com/praetorian-inc/noseyparker

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

— ✨
🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴‍☠️

El lado del mal - Vibe Hacking con Cybersecurity AI (CAI): Agentes AI autónomos para ciberseguridad ofensiva y defensiva https://www.elladodelmal.com/2025/06/vibe-hacking-con-cybersecurity-ai-cai.html #IA #AI #AgenticAI #hacking #Pentest #Pentesting #CAI #CybersecurityAI #RedTeam #BlueTeam #InteligenciaArtificial

2025-06-18 RDP #Honeypot IOCs - 73713 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 25953
14.225.202.191 - 21207
172.236.141.242 - 15561

Top ASNs:
AS11427 - 25953
AS135905 - 21207
AS63949 - 15591

Top Accounts:
hello - 73605
Domain - 27
rbmmwkg2 - 12

Top ISPs:
Charter Communications Inc - 25953
Vietnam Posts and Telecommunications Group - 21207
Akamai Technologies, Inc. - 15591

Top Clients:
Unknown - 73713

Top Software:
Unknown - 73713

Top Keyboards:
Unknown - 73713

Top IP Classification:
Unknown - 47214
hosting - 26484
mobile - 15

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/UEaJ7smt

#CyberSec #SOC #Blueteam #SecOps #Security

2025-06-18 RDP #Honeypot IOCs - 73709 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 25951
14.225.202.191 - 21205
172.236.141.242 - 15561

Top ASNs:
AS11427 - 25951
AS135905 - 21205
AS63949 - 15591

Top Accounts:
hello - 73601
Domain - 27
rbmmwkg2 - 12

Top ISPs:
Charter Communications Inc - 25951
Vietnam Posts and Telecommunications Group - 21205
Akamai Technologies, Inc. - 15591

Top Clients:
Unknown - 73709

Top Software:
Unknown - 73709

Top Keyboards:
Unknown - 73709

Top IP Classification:
Unknown - 47210
hosting - 26484
mobile - 15

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/n4hmnjCZ

#CyberSec #SOC #Blueteam #SecOps #Security

2025-06-18 RDP #Honeypot IOCs - 73705 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 25949
14.225.202.191 - 21203
172.236.141.242 - 15561

Top ASNs:
AS11427 - 25949
AS135905 - 21203
AS63949 - 15591

Top Accounts:
hello - 73597
Domain - 27
rbmmwkg2 - 12

Top ISPs:
Charter Communications Inc - 25949
Vietnam Posts and Telecommunications Group - 21203
Akamai Technologies, Inc. - 15591

Top Clients:
Unknown - 73705

Top Software:
Unknown - 73705

Top Keyboards:
Unknown - 73705

Top IP Classification:
Unknown - 47206
hosting - 26484
mobile - 15

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/ZCv8zTss

#CyberSec #SOC #Blueteam #SecOps #Security

New Open-Source Tool Spotlight 🚨🚨🚨

A Rust-powered Windows kernel rootkit, **shadow-rs**, blends advanced system manipulation with Rust's safety principles. Features include process hiding, privilege elevation, callback management, and more. For research/education. 🌐 #RustLang #KernelDevelopment

🔗 Project link on #GitHub 👉 https://github.com/joaoviictorti/shadow-rs

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

— ✨
🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴‍☠️

𝐅𝐫𝐞𝐞 𝐌𝐚𝐬𝐭𝐞𝐫𝐜𝐥𝐚𝐬𝐬 𝐨𝐧 "𝐇𝐨𝐰 𝐓𝐡𝐫𝐞𝐚𝐭 𝐈𝐧𝐭𝐞𝐥𝐥𝐢𝐠𝐞𝐧𝐜𝐞 𝐨𝐧 𝐀𝐈 𝐀𝐬𝐬𝐢𝐬𝐭𝐬 𝐘𝐨𝐮𝐫 𝐑𝐞𝐝/𝐁𝐥𝐮𝐞 𝐓𝐞𝐚𝐦 𝐑𝐨𝐚𝐝𝐦𝐚𝐩"

📅 Date: 25 June (Wed)
⌚ Time: 07:30 – 08:30 PM (IST)

Free Register Now: https://infosectrain.com/events/how-threat-intelligence-on-ai-assists-your-red-blue-team-roadmap/

#AI #InfosecTrain #Cybersecurity #ThreatIntelligence #RedTeam #BlueTeam #CyberDefense