This post dives into automating end to end artifact collection and processing using Velociraptor and Timesketch all deployed using CloudFormation in AWS.

Exploring Certificate Transparency logs, deployment of elastic stack and showcase how they can be leveraged for some interesting use cases.

Showcasing Velociraptors capabilities as we hunt for MOVEit Indicators of Compromise off the back of CVE-2023-34362

Part 1: An intro to Velociraptor - Setup and client deployment

Exploration of memory analysis with MemProcFS. This post dives into an interesting CyberDefenders challenge, hunting for malicious processes, code executions, files and more.