Exploration of how we can hook n8n into elastic to auto parse logs, extract fields and leverage auxiliary tools to determine malicious intent.

Exploration of memory analysis with MemProcFS. This post dives into an interesting Xintra lab challenge, hunting for malicious processes, persistence mechanisms, data staging and more.

A knowledge refresher - Exploration of cyber security topics.

This post dives into automating end to end artifact collection and processing using Velociraptor and Timesketch all deployed using CloudFormation in AWS.

Exploring Certificate Transparency Logs, deployment of elastic stack and showcasing how they can be leveraged for some interesting use cases.

Showcasing Velociraptors capabilities as we hunt for MOVEit Indicators of Compromise off the back of CVE-2023-34362

Part 1 - An intro to Velociraptor - Setup and client deployment

Exploration of memory analysis with MemProcFS. This post dives into an interesting CyberDefenders challenge, hunting for malicious processes, code executions, files and more.