Mark ErnestUsing the Duo Admin API to Gather Cross-tenant Administrator Email Addressestl;dr — A threat actor can create a free Duo tenant, upgrade to a trial premium service plan to create an Admin API, and programmatically…Feb 8Feb 8
Mark ErnestPart 1 — Exploring a probable escalation of phishing-as-a-service, email collection, automated…IntroductionFeb 1, 2023Feb 1, 2023
Mark ErnestMITRE ATT&CK Defender™ — Threat Hunting and Detection Engineering & Purple Teaming Fundamentals —…For a recap of previous MITRE ATT&CK Defender™ learning paths, please revisit the stories:Dec 31, 2022Dec 31, 2022
Mark ErnestMITRE ATT&CK Defender™ ATT&CK® Adversary Emulation Training-Recommendations & ReviewATT&CK® Adversary EmulationDec 31, 2022Dec 31, 2022
Mark ErnestMITRE ATT&CK Defender™ ATT&CK® SOC Assessments Training-Recommendations & ReviewATT&CK® SOC AssessmentsDec 2, 2022Dec 2, 2022
Mark ErnestMITRE ATT&CK DEFENDER™ Cyber Threat Intelligence Training — Leadership Recommendations & ReviewMITRE ATT&CK DEFENDER™ (MAD) OverviewNov 20, 2022Nov 20, 2022
Mark ErnestCyber Threat IntelligenceCollection Management Part 3 — Collection AutomationOct 23, 2022Oct 23, 2022
Mark ErnestCyber Threat IntelligenceCollection Management Part 2 — Design Technical ApproachOct 2, 2022Oct 2, 2022