Posts

Cyber lab for high-school students

Engineers for 1 Day

Posted on May 7, 2024

Today I participated in a public initiative called Engineers for a day that promotes to high-schools students the option for engineering and technologies, deconstructing the idea that these are male domains, by having only women specialists to present different technological and engineering industries to the students. [Read More]

Tags: lab review tutorial

About Social Engineering

ITSecurity interview

Posted on March 10, 2024

[Read More]

Tags: review

Blue Team Labs - Deep Blue

A Windows forensics lab

Posted on January 21, 2024

In this post we will do the BlueTeamLabs’ Deep Blue lab. Doing these labs that are associated to a specific tool is a good way to test out available tools so you can find the best to have in your arsenal. [Read More]

Tags: DFIR

How to investigate a web attack

Using pandas

Posted on October 16, 2023

In this post I showcase samples of useful search queries when investigating a web attack. [Read More]

Tags: DFIR tutorial

How to run cronjobs

Using WSL

Posted on September 30, 2023

In the last post we saw how to create a python-based tool to monitor Telegram. Like that one, security researchers have a panoply of threat monitors to keep up with what’s going on in the wild. [Read More]

Tags: devops tutorial

How to monitor Telegram

Simple python tool

Posted on August 4, 2023

As a security researcher, it is our job to monitor threat actors activity and the forums where they interact. [Read More]

Tags: threatintel tutorial dev

TweetDeck for Security Researchers

Curated threat intelligence via Twitter

Posted on July 1, 2023

On Jun 12 I got the sad news from https://twitter.com/simonbyte that, because of new restrictions to Twitter’s API, my favorite web tool to daily monitor vulnerabilities - CVETrends - is down. [Read More]

Tags: threathunting threatintel OSINT

Threat Hunting for Beginners

1-year review as a Threat Hunter

Posted on June 30, 2023

This month was marked by my 1-year anniversary as a Threat Hunter (and my actually birthday 😁) so I thought it would be a nice idea to share what I have learned this year about threat hunting. [Read More]

Tags: threathunting review learning

Hunt for a QBot infrastructure

Using JARM and HTTP Response hash (step-by-step guide)

Posted on May 20, 2023

In this post I will show you how we can hunt for a malicious infrastructure using a few standard concepts and tools. [Read More]

Tags: threathunting DFIR tutorial

Finding the perfect Markdown note-taking app

Posted on March 25, 2023

As an avid note-taker, I need to keep my notes organized and accessible from multiple devices in order to be in touch with all my research, experiments and other projects. [Read More]

Tags: organization

My favorite OSINT shortcuts

Posted on January 8, 2023

Today I will be sharing some of my favorite shortcuts I have in my browser and use in my day-to-day as a Threat Hunter. [Read More]

Tags: organization DFIR

2022 Review

Posted on December 31, 2022

2022 was filled with many ups and downs 📈📉. [Read More]

Tags: review

How to build a simple Slack bot with Python

2022 Tutorial

Posted on November 14, 2022

If you enjoy automating your workflows, a Slack bot might be just what you need. [Read More]

Tags: tutorial dev

How ransomware works

A high-level overview

Posted on August 12, 2022

Ransomware attacks have become increasingly more sophisticated, making it more difficult for organizations to defend against and recover from these attacks 🏴‍☠️. [Read More]

Tags: DFIR

CyberDefenders CyberCorp Case 2 - Write-Up Part 3

Final Part

Posted on July 2, 2022

Finishing solving the CyberCorp Case 2 challenge from CyberDefenders. [Read More]

Tags: DFIR tutorial lab windows

CyberDefenders CyberCorp Case 2 - Write-Up Part 2

Part 2/3

Posted on June 25, 2022

Continuing solving the CyberCorp Case 2 challenge from CyberDefenders. [Read More]

Tags: DFIR tutorial lab windows

CyberDefenders CyberCorp Case 2 - Write-Up Part 1

Detailed solution (beware of spoilers!)

Posted on June 5, 2022

The CyberCorp Case 2 challenge from CyberDefenders is all about Threat Hunting 🕵️‍♀️, and as I recently started a Threat Hunter role I thought it would be a fun exercise. [Read More]

Tags: DFIR tutorial lab windows

CyberDefenders Malware Traffic Analysis #1 - Write-Up

Using only Wireshark

Posted on May 12, 2022

Wanting to refresh my Wireshark skills, I enrolled in CyberDefender practice labs and chose the “Malware Traffic Analysis #1” to start with. [Read More]

Tags: DFIR tutorial lab windows

Setup a keyboard shortcut to paste text

How to use a key combination to paste any text you want

Posted on March 18, 2022

There are quite a few situations where you surely have felt that you are writing the same thing over and over again. [Read More]

Tags: organization tutorial linux

Customize your XFCE menu

How to add folders and AppImages to XFCE menu

Posted on March 14, 2022

If you are using XFCE desktop environment (DE) you might have seen that it isn’t possible to access folders directly from the menu. [Read More]

Tags: organization tutorial linux

Encoding vs. Encryption vs. Hashing

The main differences

Posted on February 6, 2022

You might have heard about these words, Encoding, Encryption and Hashing, used interchangeably. [Read More]

Tags: 1vs1 tutorial linux

Log4Shell

A step-by-step demonstration of the exploit in action

Posted on January 9, 2022

One month ago, on December 9, 2021, a code execution vulnerability identified as CVE-2021-44228, dubbed Log4Shell, affecting Java Log4j logging library was published. [Read More]

Tags: tutorial

2021 Review

Posted on December 31, 2021

2021 was a very particular year. [Read More]

Tags: review

How would you secure a server?

The most popular interview question, for good reason.

Posted on November 24, 2021

Servers are vital elements in organizations. [Read More]

Concepts you need to know when starting on a SOC

A list of known acronyms in the security field

Posted on October 12, 2021

Recently I have started a job in a SOC (Security Operations Center). [Read More]

Tags: DFIR

Tools I Used For My MSc Thesis

Posted on September 30, 2021

Today marks one year I finished my masters. [Read More]

Tags: organization

Mentorship Experience Review

Posted on July 30, 2021

This was the first mentorship program I was a part of. Today is the last day of the program so I decided to highlight my takeaways from the whole experience. [Read More]

Tags: review

Plan a Project Hand-over

Step-by-step of how to prepare a project hand-over

Posted on July 26, 2021

When you leave a project you have to make sure that it is left in prepared hands. [Read More]

Tags: tutorial

Setup Your Personal Website For Free

How to use Jekyll and GitHub Pages

Posted on July 6, 2021

In this post I will show you how I created my first personal website on GitHub Pages using Jekyll. [Read More]

Tags: tutorial dev