Hello, welcome to my blog!
Glad you’re here. I hope one of the topics I cover helps you out. I plan to cover some different topics involving the cybersecurity domain.
You could say I’m pretty passionate about what I do. I also love cyber-deception.
Most posts will be involving Blue-Team with some content bordering on Purple-Team. Whenever I run investigations and am allowed to write about them, this will be where I will most probably post them as well.
See some of my main experience below!
Incident Response
I’ve handled cases end-to-end involving Threats and Threat Actors such as
- Gootloader.
- Play Ransomware Group.
- Insider Threat within Fintech.
There’s one TA I had a lot of fun reverse engineering and for some reason there isn’t much mention except for this blog from Hunt.io.
Security Operation Center
I run my own SOC as well as working in a SOC. This pretty much involves everything from the sysadmin aspect to the detection engineering.
- I build my own custom SIGMA Rules
- Host multiple Services to “try” and simulate a real-life enterprise network. As well as save money?
- I’ve worked in multiple SOCs and helped in integrations of DFIR information dissemination.
Reverse Engineering / Malware Analysis
I am currently learning RE/Malware Analysis.
- I have a preference for IDA but BINJA seems to be looking nice.
- Recently had the opportunity to look into a qilin sample with the help of OALABS.