Roadmap For Cybersecurity
This blog shows step by step guide to navigate through the unpredictable road of cybersecurity.
Continue ReadingRecent articles
-
-
Malware Analysis and Reverse Engineering YouTube Channels
List of Malware Analysis and Reverse Engineering YouTube Channels
Continue Reading -
GetPDF Writeup - CyberDefenders
The network traffic is captured in lala.pcap contains network traffic related to a typical malicious PDF file attack, in which an unsuspecting user opens a compromised web page, which redirects the user’s web browser to a URL of a malicious PDF file. As the PDF plug-in of the browser opens the PDF, the unpatched version of Adobe Acrobat Reader is exploited and, as a result, downloads and silently installs malware on the user’s machine.
Continue Reading -
HawkEye Writeup - CyberDefenders
An accountant at your organization received an email regarding an invoice with a download link. Suspicious network traffic was observed shortly after opening the email. As a SOC analyst, investigate the network trace and analyze exfiltration attempts.
Continue Reading -
Emprisa Maldoc Writeup - CyberDefenders
As a SOC analyst, you were asked to inspect a suspected document (RTF) a user received in his inbox. One of your colleagues told you that he could not find anything suspicious. However, throwing the document into the sandboxing solution triggered some alerts. Your job is to investigate the document further and confirm whether it's malicious or not.
Continue Reading -
XLM Macros Writeup - CyberDefenders
Recently, we have seen a resurgence of Excel-based malicous office documents. Howerver, instead of using VBA-style macros, they are using older style Excel 4 macros. This changes our approach to analyzing these documents, requiring a slightly different set of tools. In this challenge, you, as a security blue team analyst will get hands-on with two documents that use Excel 4.0 macros to perform anti-analysis and download the next stage of the attack.
Continue Reading -
MalDoc101 Writeup - CyberDefenders
It is common for threat actors to utilize living off the land (LOTL) techniques, such as the execution of PowerShell to further their attacks and transition from macro code. This challenge is intended to show how you can often times perform quick analysis to extract important IOCs. The focus of this exercise is on static techniques for analysis.
Continue Reading -
Obfuscated Writeup - CyberDefenders
During your shift as a SOC analyst, the enterprise EDR alerted a suspicious behavior from an end-user machine. The user indicated that he received a recent email with a DOC file from an unknown sender and passed the document for you to analyze.
Continue Reading -
RE101 Writeup - CyberDefenders
RE101 challenge is a binary analysis exercise - a task security blue team analysts do to understand how a specific malware works and extract possible intel.
Continue Reading -
MITRE ATT&CK Framework Resources
MITRE ATT&CK Framework Resources
Continue Reading -
Stop Malware Using Macros: Windows Sandbox
Windows Sandbox
Continue Reading -
Host Your Website on GitHub with Hugo: A Step-by-Step Guide
Hosting Hugo Website on Github
Continue Reading -
Exploring the Wide Range of Projects Provided by abuse.ch
A brief description of different projects of abuse.ch
Continue Reading
