I have to give a shout out to @ThinkstCanary for being awesome. They not only have a great product but also great people behind it. 🦅
btw, @ThinkstCanary support is as awesome as their product. unfortunately i had to test it, and have been extremely impressed. and i sure sleep better at night with a bird on the wire.
overall awesome product, though. Highly useful, and covers huge blindspots with minimal effort. A++ would recommend
Glad to see @ThinkstCanary gaining traction. It's a simple but highly effective tool for network defenders.
Even if you don’t have budget get over to canarytokens.org and use their amazing free service.
I had some broken @ThinkstCanary's after a power outage and they RMA'ed new ones from South Africa in under 4 days. Amazing support!
The @ThinkstCanary device is a thing of beautiful uncomplicated simplicity. Thoroughly enjoying putting it through its paces
+100 on the fake AWS creds feature from the @ThinkstCanary team. Super useful insight as we showed at ReInvent.
Upgrading from @ThinkstCanary V1 to V2 is almost the easiest upgrade you will ever have to do.
Their on-prem canary is one of the only things that caught me right away in post-exploitation without my knowing I was burned. Solid concept and product.
Their security product is even better. The engineering thought process behind making them believable in an environment, the steps they've taken to keeping the boxes secure, and reporting is top notch.
I was wondering why my Canarytoken (a file folder) was triggering & discovered the culprit was chrome.exe. Turns out @googlechrome quietly began performing AV scans on Windows devices last fall. Wtf m8? This isn’t a system dir, either, it’s in \Documents\
The concept and use of canary tokens has made me very hesitant to use credentials gained during an engagement, versus finding alternative means to an end goal. If the aim is to increase the time taken for attackers, canary tokens work well.
Their product is not only beautiful in its simplicity/use - but they treat customers and do things as a business with the utmost integrity
very cool @ThinkstCanary . Nothing like that feeling when you see a new text coming in from your token :D
The folks at @ThinkstCanary do some great work. We've deployed their devices for various clients as it fulfills many needs in a way that is unmatched.
I <3 @ThinkstCanary Canary tokens.
I took a @ThinkstCanary canary for a test drive. Out of the box and setup in under 10 mins. Totally working and does what it says on the tin. Im officially a fanboi
Out with the old @ThinkstCanary's and in with the new. If you have not deployed these on your network you are missing a great tool.
1) Guy leaves token'd doc on WebServer (not in document root) 2) Token is hit from Russian IP Address Seriously use canarytokens.org
As a current customer I highly recommend the @ThinkstCanary. You won’t initially think it’s doing much of anything until it does and uncovers a quagmire of a situation you didn’t know you had (speaking from experience here)
When you find out from your canaries that the scanning team are testing new scanners before your IPS O_o Thanks @ThinkstCanary
Just did quick and dirty Canary Token demo for a coworker. @haroonmeer the simplicity, flexibility, and power of this tool is inspiring.
Traps, tarpits, and honey tokens just plain work - now available for free at canarytokens.org
Set aside an hour to setup my new @ThinkstCanary ... not sure what I'm going to do with the other 55 minutes.
1. BeyondCorp: Not easy, or for everyone, but I love the idea. 2. Canaries canary.tools
Get canary.tools, it can’t protect against shitty security products but at least you’ll know they failed
My most favourite blue team tip from my defending days 1. Use @ThinkstCanary to create an exe, rename it to ntdsutil.exe and put it in the same directory (C:\Windows\system32) 2. Often attackers will use this to backup ntds.dit 3. Wait for the canary to chirp and then 😎
You know who cares about securing their customers? Companies who make their product easy to use, and affordable. This is why @duosec was valued in the Billions. This is why people love @ThinkstCanary.
I’ve seen it and use it, it’s fantastic. The canary, though, as a drop in hardware device for corp/other networks is pretty fantastic, one of the best/easiest configurationsI’ve ever seen.
Love @ThinkstCanary tokens! Once again their use was proven!
@haroonmeer and the folks at @ThinkstCanary never cease to amaze me with their absolute client centricity. It can not be clearer that their priority is making a great product and building a sustainable relationship with their clients. Bravo!
But probably what you actually want is @ThinkstCanary
Don’t think, just get them ;). I was a former customer (changed roles). What will you get from them? The best support, easy interface, great price and the most accurate alert in your environment. #canarylove
The devices are great to use to ensure that firewalls/vlan isolation is configured properly. That alone has paid for the deployment.
canary.tools <-- This I like! Low friction honeypot devices.
Yes. In the DC Cisco Tetration would flag unusual traffic, in the wider estate @ThinkstCanary FTW
Just realized the magic of canarytokens.org. Splendid work. Thanks for the info mate
PS this is now yet another reason I 🖤 @ThinkstCanary — their canaries are certified to be mansplaining-free
This why I've been following @ThinkstCanary closely for a while and highly recommend them. Amazing product, developed by some of the most seasoned pros in the industry. Oh, they’re pretty cool guys too. ;)
I am often encouraged by the work that @haroonmeer and the folks at @ThinkstCanary are doing. Haroon and team have really proven out the fact that simple, elegant security solutions can scale without VC; it's inspiring!
I agree with this. @ThinkstCanary provide great products as well as great customer service to go along with them. Well done!
The two spends I’d do to increase resilience for less than one blinkenlights magic bullet cybersecurity solution? - @duosec 2FA all the things - @ThinkstCanary gain visibility on when you get penetrated Lots more I’d do w/ Canary Tokens, but that’s custom work firstname.lastname@example.org 😄
Amazing solution and service. Love @ThinkstCanary
as a customer (my goodness, almost two years now) of Thinkst, I can't point to a single interaction where folks weren't awesome.
I don't know if I've said this publicly before, but @ThinkstCanary has always been the company that I've drawn the most inspiration from for @GreyNoiseIO WRT client-centricity and pragmatism, and @haroonmeer has always been one of the founders I've aspired to emulate the most.