Going to get back into doing more DFIR related content and also posting about Blue team CTF’s since I am signed up for a few. I am also going to start getting back into doing some write ups about different malware triage/investigations along with some tool examples/use cases as I “level up” myself in this area along with actually doing malware traffic analysis, figured I’d also lump that in as it would be part of the IR triage/scoping process
-
Analytical lifting, how Olympic Weightlifting helped with my IR workflows/analysis
Don’t worry I am not going to make this a #dfirfit post with lifts and all of that but wanted to share how my Olympic Weightlifting (which is “technical” in the sense of movements/positioning and mindset) helped strengthen my IR… Continue reading →
-
DEF CON 28-DEF CON Safe Mode
First DEF CON, first full Virtual conference I attended. This post is going to be in different parts with with the overall experience, the things I really liked and kind of an simple overview of the OpenSOC CTF (which I… Continue reading →
-
Wild West Hackin’ Fest/Black Hills Information Security-Intro to Security 0(3) day
Today we shifted from logs and NSM and pivoted over to the endpoint with Advance Endpoint defection (Think Endpoint Detection and Responses…aka EDR). Or for you new TLA XDR or Extended Detection Response…but that covers more than just endpoint..and is… Continue reading →
-
Wild West Hackin’ Fest/Black Hills Information Security-Introduction To Security-0(2)day
Was hoping to get this up after the course in the evening after some time to reflect, but I had to do battle with a lawn mower XD. Today there was a 20 minute pre show banter going over Metasploit/Meterpreter… Continue reading →
-
Wild West Hackin’ Fest/Black Hills Information Security-Introduction To Security-0(1)day
I was debating on doing this as a end of the week post with going over things that were discussed and things that I learned, but the shear amount of stuff getting covered i feel that’d just be a huge… Continue reading →
M0rt0n86 