Threat Intelligence & Research
Analyzing attack patterns, vulnerabilities, and emerging threats to stay ahead in cybersecurity.
How to set up a Splunk SIEM lab on Linux
Splunk is a powerful platform used for log management, security monitoring, and threat detection. It helps security teams collect, analyze, and visualize data from various sources, making it an essential tool for blue teaming and incident response.
Email Header Analysis and Forensics
Email-based attacks are among the most common threats (phishing, spoofing, malware delivery).
How are e-mail messages routed and what techniques do adversaries use to spread malicious content? Learn with me how to read e-mail header information and how to perform simple forensics.