ryan “huber” @ryanhuber

Complete list of enterprise security products I recommend (evergreen edition): 1) @ThinkstCanary 2) @duosec 3) @Yubico

Random Guy @rndmguy

Awesome product and customer service to match! Thanks :)

Thinkst Canary @ThinkstCanary

@rndmguy Thanks for the pointer/fix a) We will fix; b) We'd love to send u some swag to say thanks. If you DM us ur address, we will make it happen

Joe Parker @joesparker

I have to give a shout out to @ThinkstCanary for being awesome. They not only have a great product but also great people behind it. 🦅

Jerry Gamblin @JGamblin

Out with the old @ThinkstCanary's and in with the new. If you have not deployed these on your network you are missing a great tool.

chort ↙️↙️↙️ Abolish DHS @chort0

You may be wondering "does @ThinkstCanary actually work?" Yes. Yes it does. #NoContext

thaddeus e. grugq @thegrugq

You could buy a threat intel feed, or you could just buy a canary from canary.tools and know when you’be been breached #CTIJam

Bea Hughes @beajammingh

If you have networks, and you care about protecting them, go give @haroonmeer some coins for a bag of @ThinkstCanary. They’re ace.

𝕭𝖎𝖌𝖌𝖎𝖊 𝕾𝖒𝖆𝖑𝖑𝖘 @bigendiansmalls

So excited to see how this bird works. cc: @ThinkstCanary @haroonmeer

Jonathan Levine @JonMLevine

+1. We ❤️ our Canaries.

haroon meer @haroonmeer

Deloitte : compromised for months & didn't know; SEC : ditto; Equifax : ditto Seriously https://t.co/s6OchWwxtu Canarytokens are free

Thinkst Canary @ThinkstCanary

The only thing more awesome than our Canaries: Our Customers 💕

Asylas @AsylasSecurity

Big fan of this tech. High signal, low noise.

haroon meer @haroonmeer

Our v2 @ThinkstCanary is: - now released; - covered here [https://t.co/w6pPKIGWYH]; - totally awesome! You really should check it out

Thinkst Canary @ThinkstCanary

1) Guy leaves token'd doc on WebServer (not in document root) 2) Token is hit from Russian IP Address Seriously use canarytokens.org

Ben Nagy @rantyben

But probably what you actually want is @ThinkstCanary

Jeremiah Grossman @jeremiahg

IMHO, Thinkst is the hottest little security company and technology you’ve never heard of.

haroon meer @haroonmeer

Deloitte : compromised for months & didn't know; SEC : ditto; Equifax : ditto Seriously https://t.co/s6OchWwxtu Canarytokens are free

@mikko @mikko

Canary is great.

haroon meer @haroonmeer

@mikko @ABridgwater Welcome to the honeypot revolution! (You should check out

halvarflake @halvarflake

How many other "security products" are positively evaluated when anyone with a clue looks at them?

Thinkst Canary @ThinkstCanary

We had the smart folks at @NCCGroupInfosec do a security audit on Canary (to add to our customers peace of mind) https://t.co/oKvrWepTMK “Overall, Thinkst have done a good job and shown that they are invested in producing not only a security product but also a secure product”

randy bush @enoclue

btw, @ThinkstCanary support is as awesome as their product. unfortunately i had to test it, and have been extremely impressed. and i sure sleep better at night with a bird on the wire.

Thinkst Canary @ThinkstCanary

Our customers are the best!

Tim McGuffin @NotMedic

overall awesome product, though. Highly useful, and covers huge blindspots with minimal effort. A++ would recommend

Thinkst Canary @ThinkstCanary

@NotMedic @wimremes Canaries happily enroll in AD :)

Roshan Harneker @roogle

As a current customer I highly recommend the @ThinkstCanary. You won’t initially think it’s doing much of anything until it does and uncovers a quagmire of a situation you didn’t know you had (speaking from experience here)

WeVsMe - J @WeVsMe

Hearing a lot about @ThinkstCanary lately. Have been considering giving them a call for a couple of our projects. We already work with Duo, strong reco to see them side by side from @thegrugq.

Mickey P @MickeyPerre

Don’t think, just get them ;). I was a former customer (changed roles). What will you get from them? The best support, easy interface, great price and the most accurate alert in your environment. #canarylove

WeVsMe - J @WeVsMe

Hearing a lot about @ThinkstCanary lately. Have been considering giving them a call for a couple of our projects. We already work with Duo, strong reco to see them side by side from @thegrugq.

Kenn White @kennwhite

Glad to see @ThinkstCanary gaining traction. It's a simple but highly effective tool for network defenders.

haroon meer @haroonmeer

Theres a solid analytical writeup of our Canary devices (https://t.co/s6OchWeWBW), by @J4vv4D: https://t.co/Cmzw0DylPN

Dominic White 🧬 @singe

When you find out from your canaries that the scanning team are testing new scanners before your IPS O_o Thanks @ThinkstCanary

Shane @Shane_in_SC

Canary is one of the most useful tools ever

thaddeus e. grugq 🌻 @thegrugq

Not everything is APT and not every APT is sophisticated. Focus on practicing basic IT governance — asset management, patching, network segmentation, least privilege, 2FA, logging... drop in some @ThinkstCanary. Make them work to earn their pay

Ean Meyer: Non-Profit Stonks and Stonk Accessories @EanMeyer

Just did quick and dirty Canary Token demo for a coworker. @haroonmeer the simplicity, flexibility, and power of this tool is inspiring.

Jim Schwar @jimiDFIR

The devices are great to use to ensure that firewalls/vlan isolation is configured properly. That alone has paid for the deployment.

haroon meer @haroonmeer

We put out this guide a little while back, with quick ideas for honeypots/breach detection. It's worth a quick read https://t.co/uKycznLsHO

Joe Parker @joesparker

Even if you don’t have budget get over to canarytokens.org and use their amazing free service.

Joe Parker @joesparker

I have to give a shout out to @ThinkstCanary for being awesome. They not only have a great product but also great people behind it. 🦅

Sherif Eldeeb @0xdeeb

"Our Canaries are made to look valuable, not vulnerable" ... that's what makes @ThinkstCanary very effective! we <3 canary.tools

Phil Huggins @oracuk

canary.tools <-- This I like! Low friction honeypot devices.

Jerry Gamblin @JGamblin

I had some broken @ThinkstCanary's after a power outage and they RMA'ed new ones from South Africa in under 4 days. Amazing support!

Robr @sweepthatleg

Traps, tarpits, and honey tokens just plain work - now available for free at canarytokens.org

David Barroso @lostinsecurity

It was great to finally meet @haroonmeer :) Dude, people only say good things about @ThinkstCanary. Congrats!

𝕭𝖎𝖌𝖌𝖎𝖊 𝕾𝖒𝖆𝖑𝖑𝖘 @bigendiansmalls

Set aside an hour to setup my new @ThinkstCanary ... not sure what I'm going to do with the other 55 minutes.

/dev/null @WilliamsonDubai

Yes. In the DC Cisco Tetration would flag unusual traffic, in the wider estate @ThinkstCanary FTW

Jack Crook @jackcr

If an attacker is in your network, moving laterally, accessing various machines and exfiltrating data, all while using no malware, would you stand a chance of receiving an alert for any of it? #DFIR

mimeframe @mimeframe

Come for the product, stay for the customer service

haroon meer @haroonmeer

Here's what other smart people say about @ThinkstCanary (140 character testimonials) https://t.co/khEX7bGS8D

Adrian Sanabria @sawaba

1. BeyondCorp: Not easy, or for everyone, but I love the idea. 2. Canaries canary.tools

Chris Sanders 🔎 🧠 @chrissanders88

You have home field advantage when an attacker is on your network. How do you capitalize on that?

Muhammad Ather @MuhammadAther88

Just realized the magic of canarytokens.org. Splendid work. Thanks for the info mate

haroon meer @haroonmeer

Using canarytokens (even the free ones at https://t.co/zMt6TdpQa9 ) will let u know when your data is slurped en masse. You really should..

Roshan Harneker @roogle

The @ThinkstCanary device is a thing of beautiful uncomplicated simplicity. Thoroughly enjoying putting it through its paces

Patrick Gray @riskybusiness

It has to be said that @duosec, @ThinkstCanary and @XipiterSec are all proof that hackers *can* actually build excellent defensive tech.

thaddeus e. grugq @thegrugq

Get canary.tools, it can’t protect against shitty security products but at least you’ll know they failed

Cesar Cerrudo @cesarcer

How long until we see products to protect against security products?

Mark Hillick @markofu

+100 on the fake AWS creds feature from the @ThinkstCanary team. Super useful insight as we showed at ReInvent.

haroon meer @haroonmeer

@infosec_au It gets even cooler with canarytokens like fake AWS creds: 1) the attacker is highly incentivized to use it (might be the keys to your kingdom); 2) he cant use it without tipping his hand; 3) most of ur users won’t accidentally trip it.

Kelly Shortridge @swagitda_

PS this is now yet another reason I 🖤 @ThinkstCanary — their canaries are certified to be mansplaining-free

Kelly Shortridge @swagitda_

Still lol’ing over the guy last night at an #RSAC event who “explained” at length (& poorly) the concept of canaries / deception to me last night, *even after I said I discussed applications of them in my Black Hat talk*

Joe Pistone @daguy666

Upgrading from @ThinkstCanary V1 to V2 is almost the easiest upgrade you will ever have to do.

Bryan @bry_campbell

My most favourite blue team tip from my defending days 1. Use @ThinkstCanary to create an exe, rename it to ntdsutil.exe and put it in the same directory (C:\Windows\system32) 2. Often attackers will use this to backup ntds.dit 3. Wait for the canary to chirp and then 😎

Jeremiah Grossman @jeremiahg

This why I've been following @ThinkstCanary closely for a while and highly recommend them. Amazing product, developed by some of the most seasoned pros in the industry. Oh, they’re pretty cool guys too. ;)

Jeremiah Grossman @jeremiahg

At the end of the day the business only cares about financial losses resulting from a breach. From the incident data I’ve seen, financial impact strongly correlates to detection & response speed. The faster a breach is identified and mitigated the less the financial impact.

Vlad Ionescu @ucsenoi

Their on-prem canary is one of the only things that caught me right away in post-exploitation without my knowing I was burned. Solid concept and product.

Jeremiah Grossman @jeremiahg

This why I've been following @ThinkstCanary closely for a while and highly recommend them. Amazing product, developed by some of the most seasoned pros in the industry. Oh, they’re pretty cool guys too. ;)

Cryptanalyst @Cryptanalyst19

Great products that work, easy and quick to install and provide real value.

Keith Hoodlet @securingdev

I am often encouraged by the work that @haroonmeer and the folks at @ThinkstCanary are doing. Haroon and team have really proven out the fact that simple, elegant security solutions can scale without VC; it's inspiring!

Jack Daniel @jack_daniel

OK, let's play "find something nice to say about the infosec game". It may be hard for some of us, but let's try. Tell me about startups and small companies doing cool stuff and/or treating their people well, ideally both.

jungman @notajungman

Their security product is even better. The engineering thought process behind making them believable in an environment, the steps they've taken to keeping the boxes secure, and reporting is top notch.

Keith Hoodlet @securingdev

You know who cares about securing their customers? Companies who make their product easy to use, and affordable. This is why @duosec was valued in the Billions. This is why people love @ThinkstCanary.

Keith Hoodlet @securingdev

I know most of my #InfoSec Vendor friends are going to find this to be an #UnpopularOpinion - but security tool pricing - as it stands today - does not scale to the level of enterprise organizations; that’s why we will continue to struggle at securing the enterprise 😕😩

David Peach @realdavidp

I agree with this. @ThinkstCanary provide great products as well as great customer service to go along with them. Well done!

Thinkst Canary @ThinkstCanary

There are so many things to highlight in this customer email, we don’t know where to start. We 💚 our customers!

Kelly Shortridge @swagitda_

I was wondering why my Canarytoken (a file folder) was triggering & discovered the culprit was chrome.exe. Turns out @googlechrome quietly began performing AV scans on Windows devices last fall. Wtf m8? This isn’t a system dir, either, it’s in \Documents\

𝕭𝖎𝖌𝖌𝖎𝖊 𝕾𝖒𝖆𝖑𝖑𝖘 @bigendiansmalls

I’ve seen it and use it, it’s fantastic. The canary, though, as a drop in hardware device for corp/other networks is pretty fantastic, one of the best/easiest configurationsI’ve ever seen.

thaddeus e. grugq @thegrugq

The two spends I’d do to increase resilience for less than one blinkenlights magic bullet cybersecurity solution? - @duosec 2FA all the things - @ThinkstCanary gain visibility on when you get penetrated Lots more I’d do w/ Canary Tokens, but that’s custom work g@comae.io 😄

thaddeus e. grugq 🌻 @thegrugq

Here’s the slide on the Morris Worm methodology, and credential abuse. Use 2FA inside yournetworks, it was one of the lessons learned for RSA after they got hit years ago for their seeds db.

shubs @infosec_au

The concept and use of canary tokens has made me very hesitant to use credentials gained during an engagement, versus finding alternative means to an end goal. If the aim is to increase the time taken for attackers, canary tokens work well.

Thinkst Canary @ThinkstCanary

It’s tough to beat Authentic feedback. Even during PoC’s, Canaries wreck Intruders.

nj @sec_nj

Their product is not only beautiful in its simplicity/use - but they treat customers and do things as a business with the utmost integrity

Rachel Tobac @RachelTobac

@sec_nj @DAkacki @defcon @TrustedSec @Binary_Defense @RenditionSec @redcanaryco @rapid7 @TCGsec @ThinkstCanary @haroonmeer Oh cool! What do they do that is top notch?

C:\Users\Tulpa @tulpa_security

Amazing solution and service. Love @ThinkstCanary

haroon meer @haroonmeer

Here's what other smart people say about @ThinkstCanary (140 character testimonials) https://t.co/khEX7bGS8D

John Lampe @f00dikator

very cool @ThinkstCanary . Nothing like that feeling when you see a new text coming in from your token :D

Thinkst Canary @ThinkstCanary

Stolen AWS API keys are a nightmare. U can now seed AWS keys as Canarytokens & receive notifications when they are used (Inspired by @dagrz)

Bob Covello @BobCovello

@haroonmeer and all the folks at @ThinkstCanary are magnificent. A great product, enhanced by superior dedication to customer satisfaction!

Alec R Waters @AlecRWaters

Top customer service from @haroonmeer and @ThinkstCanary ! Awesome stuff

Freakazoid @Freakazoidile

The folks at @ThinkstCanary do some great work. We've deployed their devices for various clients as it fulfills many needs in a way that is unmatched.

Packetlabs @pktlabs

Canaries in IT Security often allude to the concept of the canary in a coal mine where the birds were an early warning sign that danger was near. This concept mirrors that of the @ThinkstCanary

Olaf Hartong @olafhartong

Love @ThinkstCanary tokens! Once again their use was proven!

Adam Chester @_xpn_

I found out from this tweet a while back by @swagitda_

jungman @notajungman

as a customer (my goodness, almost two years now) of Thinkst, I can't point to a single interaction where folks weren't awesome.

rik van duijn @rikvduijn

@haroonmeer @ThinkstCanary Sounds so simple! Feel it might be difficult to teach to new employees. Is it something you pay extra attention to when someone joins? Or is it such a core part of the company everyone learns? And even when you try to keep promises it's easy to forget something when you are busy.

Jack Daniel (is mostly offline) @jack_daniel

I <3 @ThinkstCanary Canary tokens.

Martin Potgieter @mlpotgieter

@haroonmeer and the folks at @ThinkstCanary never cease to amaze me with their absolute client centricity. It can not be clearer that their priority is making a great product and building a sustainable relationship with their clients. Bravo!

Andrew Morris @Andrew___Morris

I don't know if I've said this publicly before, but @ThinkstCanary has always been the company that I've drawn the most inspiration from for @GreyNoiseIO WRT client-centricity and pragmatism, and @haroonmeer has always been one of the founders I've aspired to emulate the most.

Martin Potgieter @mlpotgieter

@haroonmeer and the folks at @ThinkstCanary never cease to amaze me with their absolute client centricity. It can not be clearer that their priority is making a great product and building a sustainable relationship with their clients. Bravo!

The Javvad Malik A.I. @J4vv4D

I took a @ThinkstCanary canary for a test drive. Out of the box and setup in under 10 mins. Totally working and does what it says on the tin. Im officially a fanboi

Eric Capuano ⬡ @eric_capuano

One of the products that just keeps getting better - @ThinkstCanary adds WinRM/PowerShell Remoting services to their canaries 🍯 @Recon_InfoSec we deploy these for all of our MDR customers as it’s such a valuable detection tool. https://t.co/Egi6nj9HhX

Thinkst Canary @ThinkstCanary

Renewals don't have to be a grudge purchase: "I'm trying to get a quote for some additional birds" "I've been working in infosec for 20 years and your product is still up there in my top 5 favourite controls!" ✊💚

Louis Nyffenegger @snyff

@cybersecmeg @ThinkstCanary: best bang for your buck!

meg west @cybersecmeg

if your organization only had the budget to purchase ONE security tool - which one would you suggest, and why?

Matt Zorich @reprise_99

As a defender deception technology is one of the most powerful tools you can have. Honeypots and honeytokens can be daunting to try to configure, but they don't need to be. You can get there in a few clicks with @ThinkstCanary and #MicrosoftSentinel -

Thinkst Canary @ThinkstCanary

"You made a pentester very VERY sad and we appreciate it very very much hahaha." Thinkst Canary - Making attackers sad on all 7 continents...

Dave - ʎɐM ǝɥ⊥ ʇoN sI sıɥ⊥ @davewj

@UK_Daniel_Card @ThinkstCanary @ThinkstCanary does indeed rock - brilliant tech, brilliant concepts and brilliant people - fantastic customer service yeah so straightforward to connect into monitoring - MS Sentinal logicapp and done in an hour (including thinking about tea making the tea and drinking the tea)

MrR3b00t | #StandWithUkraine #DefendAsOne @UK_Daniel_Card

Omg what is this trash on LinkedIn…. I might have to go on a safari 🤣🤣🤣🤣 also @ThinkstCanary rocks ❤️🤙👍

Eleanor Saitta @Dymaxion

Had a @ThinkstCanary go off at a client today — true positive, but not malicious, the fourth or fifth alert we've had across six-odd clients, many birds, and several years. I wish all my security tooling was as accurately quiet.

Corey Quinn @QuinnyPig

I’m not particularly biased at all; they’re not a current sponsor to the best of my knowledge. @ThinkstCanary operationalizes a pattern I fell in love with a decade ago. Heartily endorse.

haroon meer @haroonmeer

Can verify. @BradleyJayanath has a lovely radio-voice. Also: @ThinkstCanary is pretty useful. (I’m a little biased here)

Blue Canary 🇺🇦 🌻 @brulboei_

The one vendor that truly exceeded my expectations. Every now and then I’m caught off guard by my own canaries.

haroon meer @haroonmeer

Last year we (@ThinkstCanary) cleared $11m in ARR¹ with almost 100% inbound sales. Some customers have taken us into > 9 different jobs. Tempted to start a referral program (use this code -> reward) but don’t want to cheapen the act Any thoughts? __ ¹

Joe Pistone @daguy666

You probably wont ever need @ThinkstCanary technical support. But if you did, rest assured that they offer the best support in the business.

ALEX @wompq

I ❤️ @ThinkstCanary

Jan Muenther @janmuenther

@g33kgir11 @haroonmeer @ThinkstCanary let me just say it's the only time I remember grinning from ear to ear while going through the configuration options of a security tool

g33kgir1 @g33kgir11

@haroonmeer @ThinkstCanary Can confirm, it is freaking glorious.

Thinkst Canary @ThinkstCanary

Customers that DM, just “to spread some love” 🥰✊️💚

Justin Varner @jthev05

Forcing an adversary to question the legitimacy of a target can be the difference between detecting nefarious activity and preventing a catastrophic breach or not knowing anything before it’s too late. @ThinkstCanary products work and that’s really special.

Justin Varner @jthev05

I almost never tweet but I have to give a shout-out to @ThinkstCanary for listening to customer feedback and actually building a containerized version of their internal bird. This is a game changer for anyone running primarily Kubernetes or Nomad workloads

Thinkst Canary @ThinkstCanary

Sep 7, 00h09: “I ran into a canary at a new customer!” “some of your gear in the wild caught me during a gig!" Respect! ✊️💚

Nick Bettison @linickx

The team @ThinkstCanary are genuinely awesome, I put in a cheeky little feature request yesterday & TODAY it’s live in my console!! Outstanding customer customer support!

haroon meer @haroonmeer

People talk about “leaving money on the table” like it’s always a bad thing. Mails like this are pretty priceless… (Cc: @ThinkstCanary)

Eleanor Saitta @Dymaxion

@haroonmeer I'm getting the POs sent over from the seventh and eighth companies I've had install them this week.

haroon meer @haroonmeer

We totally have the best customers✊️💚

Infosec_Spi 🌻🇺🇦 @infosecspy

@bigendiansmalls @ThinkstCanary They are fantastic, actually caught a red teamer this time

Smalls @bigendiansmalls

Just set up an aws @ThinkstCanary for ec2 and it couldn't have been easier. Continues to be the best product out there.....

Vlad Styran 🇺🇦 @arunninghacker

People sometimes ask me why I don’t miss a chance to endorse these guys. This is why.

Thinkst Canary @ThinkstCanary

“I wanted to let you know that during the demo we detected real attack on our client network!” (sic)

Flee @fredrickl

I put @material_sec in the same category as great, true security vendors like @Bugcrowd, @duosec, @ThinkstCanary, and @1Password. They all live up to what they sell, stay focused on solving *real* security problems, over delivery, and provide remarkable support.

Flee @fredrickl

I don't get paid to talk about security products I like. I'm not on any advisory boards. I'm not an investor in any of them. I just like telling other people at *good* security companies that deliver *real* value and stand by their promises. @material_sec is the real deal.

raptor @0xdea

@pwnallthethings @thegrugq I’d concentrate on integrating attack surface mapping (such as @hdmoore’s rumble network discovery) and early detection (e.g. @ThinkstCanary) tools in my governance model. And keep the remaining $299m for the trouble.

Pwn All The Things @pwnallthethings

If WH comes to you and says "here's $300m to reliably prevent or rapidly detect the next SolarWinds breach. Condition tho is your idea must work in normal large commercial networks without rebuilding them from scratch". What do you do with it?

Robᵉʳᵗ Graham @ErrataRob

@ThinkstCanary Your product is awesome. I'd certainly advertise that I use it in order to discourage attackers!!

Thinkst Canary @ThinkstCanary

@ErrataRob While i agree with Tom's point in general, i must agree that letting people know you are running Canaries seems to have some positive side effects... https://t.co/DPeEwtn7h6

martin_casado @martin_casado

Use @ThinkstCanary

Dustin Volz @dnvolz

Can confirm DHS has also been hacked in the SolarWinds attack. DHS is not currently acknowledging their breach publicly. With Commerce and Treasury, that's three confirmed agency intrusions. I'm also told national security agencies and defense contractors have been compromised.

Thinkst Canary @ThinkstCanary

'This is our annual pen-testing audit... The birds were able to pick up the “intruder” on at least 6 occasions from what I saw.' 'they were identified within 20 minutes' Make your intruders work for it...

Blanko Benjamin💾 @bl4nk_io

If you have vendors, you have supply chain issues... Last I checked, unless you are REALLY into running Gentoo or making your own hardware (*cough* Google *cough*) - even THEN you're still not "safe" - your BEST bet is using those canaries to hopefully tip you off early enough

haroon meer @haroonmeer

“Attacker Leverages XXXX Supply Chain to Compromise Multiple Global Victims” There’s many ways for attackers to land on a network. You can’t prevent them all, but you can detect them when they are there. It’s literally why @ThinkstCanary exists.

thaddeus e. grugq 🌻 @thegrugq

@jeremiahg True positive detection is why I like @ThinkstCanary so much. And other related approaches to detecting compromise that utilise attackers taking positive steps to further their access or exploit their access. That’s where I think there is a viable future against attackers

thaddeus e. grugq 🌻 @thegrugq

@jeremiahg If they’re spending time doing things other than exfiltrating data, that is (generally speaking, ignoring negative things etc) good. They’re in a position where a response evicting them will prevent a breach. That prevention will always work.

MBH @mbhbox

Deploying security canary devices/beacons is essential in any environment. You can detect movement from malicious activities, including insiders. Thinkst Canary is an awesome product by an awesome team, too!

Thinkst Canary @ThinkstCanary

Unsolicited feedback is the best feedback ✊️💚

ralph logan @realralphlogan

@imelven @ThinkstCanary I’ve been developing, deploying amd working with honeypots for 20+ years (https://t.co/elRsY5jdNm). This is the first commercial product that has made them a simple security line item that proves a return.

Ingo Bente @ingobente

So I recently had the chance to play around with @ThinkstCanary tools. And yes - they are just as awesome as random #infosec people on Twitter want to make you believe 🚀♥️

Thinkst Canary @ThinkstCanary

"The first time (if the red team doesn't know) they'll get caught and then what will happen is the next time around, red-team will second guess every little thing they do & it will slow them down" "Put them anywhere. Put them everywhere" @malcomvetter on Canaries/Canarytokens

Martin Potgieter @mlpotgieter

@haroonmeer and the folks at @ThinkstCanary never cease to amaze me with their absolute client centricity. It can not be clearer that their priority is making a great product and building a sustainable relationship with their clients. Bravo!

Ben Nagy @rantyben

If you asked me to name three classes of (defensive) security tech that actually, definitely work I would say canaries, 2fa and then pause for a really long time

Thinkst Canary @ThinkstCanary

If you are at #RSAC and pop over to the North Hall, we will be happy to demo Canary, talk tokens or just chat on general hackery. On Tuesday, you can catch @haroonmeer in the South Expo Briefing Center at 17h10, talking about Birds (and why you should probably be using them).

Freakazoid @Freakazoidile

The folks at @ThinkstCanary do some great work. We've deployed their devices for various clients as it fulfills many needs in a way that is unmatched.

Packetlabs @pktlabs

Canaries in IT Security often allude to the concept of the canary in a coal mine where the birds were an early warning sign that danger was near. This concept mirrors that of the @ThinkstCanary

haroon meer @haroonmeer

Infosec products: - don’t have to be grudge-purchases; - don’t have to look like they were written for Windows 3.1; - don’t have to be crazy expensive; - can absolutely be built with ❤️

Packetlabs @pktlabs

We are excited to be rolling out another Canary deployment to one of our clients. Appears to be built with ❤️. @ThinkstCanary

David French @threatpunter

@ThinkstCanary Your canaries tipped me off about so much weird shit happening in an environment that I was monitoring a few years ago 💙

Thinkst Canary @ThinkstCanary

*David Attenborough Voice* Observe the lesser spotted Rack-Mounted Canaries in their natural habitat...

Bob Covello @BobCovello

@haroonmeer and all the folks at @ThinkstCanary are magnificent. A great product, enhanced by superior dedication to customer satisfaction!

Alec R Waters @AlecRWaters

Top customer service from @haroonmeer and @ThinkstCanary ! Awesome stuff

Dino A. Dai Zovi @dinodaizovi

Apropos to my last tweet, there is an alternative to crappy security products:

haroon meer @haroonmeer

#VB2019 has released the vid of our closing talk: “The Products we Deserve” https://t.co/MNJrC9my2F It’s light weekend watching & hopefully gets more ppl to see that we can push back against “the way things have been done” That we can build products & companies that suck less.

SwiftOnSecurity @SwiftOnSecurity

@ucsenoi @jeremiahg @ThinkstCanary Yeah it’s the only thing that’s impressed me for people whose job isn’t “Run honeypots.” I was hugely into honeypots years ago and it’s an expensive hobby time-wise.

Vlad Ionescu @ucsenoi

@jeremiahg @ThinkstCanary Their on-prem canary is one of the only things that caught me right away in post-exploitation without my knowing I was burned. Solid concept and product.

Mike Ruth @MF_Ruth

QConSF talk is finally up! Lend me your eyes and ears, as I talk about how canaries and intrusion detection fit into automated deployments, and infrastructure at scale. #birdlyfe

Login

Email Address
Password

Reset password

Email Address

Select your number of Canaries

$7500 /USD per year
    Canaries
  • 5 Beautiful Thinkst Canaries Hardware appliances, Hyper-V, Docker, VMWare. AWS, Azure or GCP
  • Canarytokens
  • Unlimited Canarytokens Mint as many tokens as you like on your private Canarytoken Server
  • AWS Console
  • Your Very Own AWS Hosted Console
  • Updates and Maintenance
  • Support, Maintenance & Updates for a Full year
Next
Quote Check

Download your PDF Quote

Email Address (Required)
First Name
Last Name (Required)
Organisation
Country
How Did You Hear About Us?
Previous

Preparing your quote...

Canary

Your quote is ready!

Quote Done
Please click here if your download hasn't automatically started.

Sorry we couldn't generate your quote.

Quote Fail
We still received your contact details and we'll be in touch soon. If you need immediate help, please drop an email to sales@canary.tools

Send us a message

Full Name
Email Address
How Did You Hear About Us?
Message

Thanks for contacting us!

Contact

We'll be in touch shortly.