COMPTIA PenTest+ is CompTIA’s intermediate-level offensive security cert. It’s meant for professionals who want to demonstrate their…

We covered an introduction to Zeek, packets and logs analyzer, that can be used for network security monitoring, incident analysis and logs…

We covered process injection and process hollowing. Process injection is the process of injecting an already running process with malicious…

We covered analyzing a sample Microsoft office word document using oletools to extract relevant Macros and links. The sample document…

We briefly talked about cyber threat intelligence, tools and platforms used and how threat data is ingested into these tools. We covered…

We covered basics of Windows internals including processes, virtual memory allocation, handles, DLLs, Portable executable header and other…

We briefly explained command injection as one of the top 10 web application vulnerabilities. Command injection allows an attacker to…

We covered an incident response scenario from HackTheBox named PersistenceFutile where we went over an infected Linux machine and we were…

We covered the second part of Windows OS forensics where we demonstrated gathering artifacts from the file system. We covered extracting…

We covered the process of conducting computer forensics under the context of examining a Windows operating system. We explained what are…

We covered local file inclusion that is a web application vulenrability. We also covered the concept of log file posioning and how we can…

We covered enumerating Windows and Linux during the post-exploitation phase of a penetration test. Enumeration post-exploitation can have…