Log inOpen app
Max Rogers
1,825 posts
user avatar
Max Rogers
@MaxRogers5
Sr. Director of SOC at Huntress. Ex-Mandiant/FireEye. Bringing security to the Fortune 5,000,000.
Charlotte, NC
Joined January 2012
1,092
Following
3,349
Followers
user avatar
@MaxRogers5

See Max Rogers’s full profile

Open X

New to X?

Sign up now to get your own personalized timeline!

Create account

By signing up, you agree to the Terms of Service and Privacy Policy, including Cookie Use.

Terms·Privacy·Cookies·Accessibility·Ads Info·© 2026 X Corp.
Don't miss what's happening
People on X are the first to know.
Log inSign up
  • Pinned
    user avatar
    Max Rogers
    @MaxRogers5
    May 22, 2025
    You can find me here: bsky.app/profile/maxrog…
    1
    3
    2K
  • user avatar
    Max Rogers
    @MaxRogers5
    Aug 10, 2024
    Someone applied to one of our SOC Analyst roles and uploaded the DEFAULT BOOT SEQUENCE OF A CISCO ROUTER.docx as their resume.
    78
    64
    1.9K
    192K
  • user avatar
    Max Rogers
    @MaxRogers5
    Jul 18, 2024
    1/ 🛡️ The Customer Isn't Always Right 🛡️ We reported several suspicious SSH processes originating from a DICOM (medical images) viewer installer. The viewer itself was legitimate, but the SSH activity seemed suspicious. Our partner initially rejected the report, insisting it was
    6
    77
    446
    122K
  • user avatar
    Max Rogers
    @MaxRogers5
    Feb 7, 2024
    🪥🦷💻
    1
    30
    309
    19K
  • user avatar
    Max Rogers
    @MaxRogers5
    Mar 21, 2024
    Earlier someone asked if @HuntressLabs hires associate/junior levels: We love to hire folks who climb the leaderboards of hack the box and blue team labs online. A lot of our interview focuses on basic DFIR so I recommend consuming @13CubedDFIR content fanatically. Read and
    5
    65
    283
    35K
  • user avatar
    Max Rogers
    @MaxRogers5
    Feb 22, 2024
    We can confirm, we're seeing the following deployed via the SlashAndGrab (ScreenConnect Vuln) - Ransomware (Lockbit) - Cobalt Strike - SSH Tunnels - CoinMiners - Additional RMMs Victims include Vets Offices, Health Clinics, and local governments (including attacks against
    13
    99
    273
    116K
  • user avatar
    Max Rogers
    @MaxRogers5
    Nov 20, 2023
    Welcome to the first Huntress Threat Report 🚨🦸‍♀️ An in-depth review of real world intrusions @ small & mid-sized businesses. Follow @HuntressLabs for more. huntress.com/hubfs/SMB-Thre…
    10
    73
    259
    238K
  • user avatar
    Max Rogers
    @MaxRogers5
    Aug 21, 2024
    Attackers always ask whoami but they never ask whyami
    13
    33
    247
    26K
  • user avatar
    Max Rogers
    @MaxRogers5
    Jul 31, 2024
    I’ve been absolutely shocked by the volume of M365 session theft attacks. We recently deployed some new detection tech to a subset of customers and these campaigns are hitting everyone from very large orgs to your local vet office 😿 Seeing threat actors blast their campaigns
    19
    45
    248
    55K
  • user avatar
    Max Rogers
    @MaxRogers5
    Feb 16, 2022
    My detections work hard so I don’t have to. It’s the passive income of cyber security.
    6
    21
    201
  • user avatar
    Max Rogers
    @MaxRogers5
    Apr 16, 2022
    Detection Engineers, what is your favorite blog, tweet, presentation, or video on methodology and process?
    13
    49
    203
  • user avatar
    Max Rogers
    @MaxRogers5
    Aug 6, 2024
    I want to highlight @HuntressLabs SOC Analyst @wbmmfq for going above and beyond here. In a SOC it's common to take the alert in front of you, do your analysis/response, and then move on. You've revoked the attackers access and can grab the next alert. However, I've noticed a
    5
    29
    200
    22K
  • user avatar
    Max Rogers
    @MaxRogers5
    Oct 21, 2024
    Interesting data from @HuntressLabs EDR here 🧵 Let's explore how frequently RMM/remote tools are "rare" in an organization, where "rare" is less than 10% of hosts use the tool.
    5
    29
    205
    22K
  • user avatar
    Max Rogers
    @MaxRogers5
    Oct 16, 2024
    3
    18
    157
    27K