Mark ErnestUsing the Duo Admin API to Gather Cross-tenant Administrator Email Addressestl;dr — A threat actor can create a free Duo tenant, upgrade to a trial premium service plan to create an Admin API, and programmatically…·9 min read·Feb 8, 2024----
Mark ErnestPart 1 — Exploring a probable escalation of phishing-as-a-service, email collection, automated…Introduction·12 min read·Feb 1, 2023----
Mark ErnestMITRE ATT&CK Defender™ — Threat Hunting and Detection Engineering & Purple Teaming Fundamentals —…For a recap of previous MITRE ATT&CK Defender™ learning paths, please revisit the stories:·6 min read·Dec 31, 2022----
Mark ErnestMITRE ATT&CK Defender™ ATT&CK® Adversary Emulation Training-Recommendations & ReviewATT&CK® Adversary Emulation·6 min read·Dec 31, 2022----
Mark ErnestMITRE ATT&CK Defender™ ATT&CK® SOC Assessments Training-Recommendations & ReviewATT&CK® SOC Assessments·3 min read·Dec 2, 2022----
Mark ErnestMITRE ATT&CK DEFENDER™ Cyber Threat Intelligence Training — Leadership Recommendations & ReviewMITRE ATT&CK DEFENDER™ (MAD) Overview·7 min read·Nov 20, 2022----
Mark ErnestCyber Threat IntelligenceCollection Management Part 3 — Collection Automation·9 min read·Oct 23, 2022----
Mark ErnestCybersecurity burnout awarenessAddressing what is in your control·7 min read·Oct 10, 2022----
Mark ErnestCyber Threat IntelligenceCollection Management Part 2 — Design Technical Approach·5 min read·Oct 2, 2022----