Recent posts
APT35 (Charming Kitten)
APT35 has been active since at least 2013 and is recognized for its sophisticated use of social engineering tactics.
SideWinder APT Groups
SideWinder APT Groups
ToddyCat APT Group
ToddyCat APT Group
FalconEye Challenge
FalconEye Blue Team Challenge
Post Exploitation Techniques & Defense
Post Exploitation Techniques & Defense
eCIR - Effectively Using Splunk (Scenario 1)
eCIR - Effectively Using Splunk
Lab: Reflected XSS into a JavaScript string with angle brackets HTML encoded
Reflected Cross-Site Scripting (XSS)
Red Team Tools
The investigation case about FireEye red team tools. Try to find root cause of incident
Data Breach 01
Unraveling the Enigma of Company Data Sale and Unveiling the Cryptic Clue
SOC175 - PowerShell Found in Requested URL
This 0-day vulnerability (CVE-2022-41082) is being actively exploited in the wild.