OODA-driven SOC Strategy

Windows Command Line Cheat Sheet

A comprehensive Windows command-line reference guide for security professionals, system administrators, and incident responders.

Linux Detection Engineering - A primer on persistence mechanisms

A comprehensive guide on Linux persistence mechanisms, focusing on scheduled tasks and jobs, their implementation, detection, and hunting strategies.

APFS File System Format Reference Sheet

APFS is a proprietary file system developed by Apple for macOS, offering improved performance, security, and reliability.

SMB Access from Linux Cheat Sheet

A comprehensive cheat sheet for accessing Windows systems from Linux hosts using smbclient and rpcclient tools, covering password management, user and group enumeration, and more.

BPF+: Exploiting Global Data-flow Optimization in a Generalized Packet Filter Architecture

BPF+ is a generalized packet filter framework that achieves both high-level expressiveness and good performance for network monitoring and intrusion detection applications.

SSH Tunnelling to Punch Through Corporate Firewalls – Updated take on one of the oldest LOLBINs

A comprehensive guide on utilizing advanced SSH tunneling techniques for network penetration testing and red team engagements, with a focus on Windows environments and firewall bypass methods.

Proxmark III

A tool for testing and analyzing RFID and NFC tags, allowing users to read and write data, and perform various attacks and tests.

Intelligence-Driven Computer Network Defense Informed by Analysis of Adversary Campaigns and Intrusion Kill Chains

A new approach to computer network defense that leverages knowledge about advanced persistent threats, using a kill chain model to describe phases of intrusions and map adversary kill chain indicators to defender courses of action.