Work Experience Technical Support Engineer I @ Tenable Jan 2024 - Present Conducted in-depth analysis of vulnerability scan results, system audits, and log events to detect and mitigate security...

Introduction This phishing campaign has been by far one of the more reactive ones I’ve personally run into. I even managed a few words out of the admin before he grew bored of me : ( There is a lo...

Intro Received an email from no-reply@je-suis-licencie.info, with a basic invoice phishing content in German. Initial Infection This malware came disguised as a zip folder. Rechnung_BTKR24_0008703...

Intro This malware came from a spam email received from: no-reply@clarinetthai.com The email was written in German, however the code is using a Russian IP Initial Infection This malware came disg...

Update 7/25 We now get the following when visiting all domains mentioned: <html><body><h1>503 Service Unavailable</h1> No server is available to handle this request. </...

Intro We know we have to find 6 flags, lets see where we can get them from. Enumeration I started off with a simple nmap scan using the --top-ports flag, I like this as it is pretty good at findin...

Intro This box askes us to find a root flag, not much else in regards to direction or hints. Let’s start with Enumeration rustscan -a 10.10.40.22 I like using rustscan initally as it is fast and ...

Intro This box askes us to find a user and root flag, not much else in regards to direction or hints. Let’s start with Enumeration rustscan -a 10.10.2.80 I like using rustscan initally as it is f...