Log4jshell CVE-2021-44228: Exploiting Log4j Vulnerabilities using Rogue JNDI In this blog post, we will share the steps that you can follow to simulate the use of CVE-2021-44228 to exploit Log4j vulnerabilities using Rogue JNDI (Malicious LDAP Server). We will follow the
Log4jshell Virtualbox CVE-2021-44228: Setting Up Virtual Machines for the Attacker and Victim In this blog post, we will share the steps that you can follow to set up the attacker and victim’s virtual machines in VirtualBox (Version 6.1.30) that you can use to simulate the
Virtualbox Ubuntu VirtualBox: Creating an Ubuntu Server 20.04.3 LTS Virtual Machine In this blog post, we will share the steps that you can follow to create an Ubuntu Server virtual machine in VirtualBox (Version 6.1.30). We are using the name tomcat for this virtual
Virtualbox Ubuntu VirtualBox: Creating an Ubuntu Desktop 20.04.3 LTS Virtual Machine In this blog post, we will share the steps that you can follow to create an Ubuntu Desktop virtual machine in VirtualBox (Version 6.1.30). We are using the name attacker for this virtual
Ossem OSSEM Detection Model: Leveraging Data Relationships to Generate Windows Event XPath Queries In this blog post, we will introduce the OSSEM Detection Model project and show you how to use it to create Windows Event XPath queries. These XPath queries can then be used to
Ossem OSSEM Data Dictionaries: Correlating Security Telemetry In this blogpost, we will share a basic use case on correlating security telemetry (Microsoft Security Auditing) through common data fields documented in OSSEM - Data Dictionaries. We will use original data field
Cobalt-strike Mordor Simulating Cobalt Strike Beacon Activity In this quick blogpost, I will share the steps that I completed to simulate Cobalt Strike beacon activity using APTSimulator in a Windows 10 virtual machine.
Firewalla_gold Unifi Malware Malware_analysis Malware Analysis Series - Part 2, How to Isolate our Homelab with Network Segmentation Introduction:
Vmware Malware Malware_analysis Remnux Flare Malware Analysis Series - Part 1, Setting Up a Basic Malware Analysis Virtual Lab Introduction: Since joining the Cyber Security and Intelligence community in 2016, I’ve always had a strong interest in malware analysis. The process of breaking something down, looking at its individual parts, testing hypotheses
Ntobjectmanager Rpc Creating and Starting a Windows Service Remotely Using NtObjectManager Via Remote Procedure Calls (RPC) Over SMB I wanted to learn more about NtObjectManager and the latest support for named pipes RPC clients so I decided to give it a try.
Azure Mdi How to set up a Microsoft Defender for Identity Sensor on a Domain Controller I recently created an Azure Resource Manager (ARM) template to deploy a lab environment to validate the detection of identity attacks and wanted to deploy Microsoft Defender for Identity to test the protection
Spark Jupyter-notebook Vscode Python PySpark.SQL and Jupyter Notebooks on Visual Studio Code (Python kernel) In this blogpost, I will share the steps that you can follow in order to execute PySpark.SQL (Spark + Python) commands using a Jupyter Notebook on Visual Studio Code (VSCode). During the development
Mordor Jupyter-notebook Vscode Python Importing a Mordor Dataset with Jupyter Notebooks on Visual Studio Code (Python kernel) In this blogpost, I will share the steps that you can follow in order to import a Mordor dataset to your workspace on Visual Studio Code (VSCode) using a Jupyter Notebook. During the
Jupyter-notebook Vscode Python My First Jupyter Notebook on Visual Studio Code (Python kernel) In this blogpost, I will share the steps that you can follow in order to generate and use a Jupyter Notebook on Visual Studio Code (VSCode). During the development of this blogpost I
Azure Adfs How to Set Up Azure AD Connect to Sync and Federate Custom Domain with On-Prem Directory I deployed a lab environment to learn more about federation access between an “on-prem” lab environment and the cloud. I basically wanted to learn how to federate a custom domain in my Azure
Azure Azure arm How to Create an Azure Storage Account via Azure Resource Manager Templates to Host Private Files I recently created an Azure Resource Manager (ARM) template where I needed to install a Trusted Certificate Authority (CA) signed SSL certificate on a Windows server VM at deployment time. I tried to
Adfs Fiddler Wireshark Exploring ADFS Initial Web Traffic and Kerberos Authentication via Fiddler and Wireshark I recently wanted to learn more about the internals of Active Directory Federation Services (ADFS) and created an Azure Resource Manager (ARM) template to deploy a basic lab environment. As part of my
Dns Azure Microsoft 365 Adding a Custom Domain to Microsoft 365 I wanted to set up a federated trust between my on-prem Active Directory (AD) in my lab environment and my Microsoft 365 subscription to allow federated authentication to Office 365 applications. One of
Dns Ssl certificates Getting started Getting a Certificate Signing Request and Activating a Trusted CA Signed SSL Certificate Recently, I had to deploy an Active Directory Federation Services (ADFS) server in my lab environment and integrate it with Office 365. One thing that I did not know was that O365 required
Jupyter-notebook Vscode Python Installing a Python Library in Visual Studio Code - Windows In this quick blogpost, I will share the steps that you can follow in order to install a Python library using pip through either the Terminal or a Jupyter Notebook in Visual Studio
Vscode Installing Visual Studio Code - Windows In this quick blogpost, I will share the steps that you can follow in order to install Visual Studio Code (1.54.3) (VSCode) on a Windows computer using Firefox as web browser.
Vscode Installing Visual Studio Code - Mac In this quick blogpost, I will share the steps that you can follow in order to install Visual Studio Code (1.57.1) (VSCode) on a Mac computer using Brave browser.
Python Installing Python Interpreter - Windows In this quick blogpost, I will share the steps that you can follow in order to install the Python (3.9.2) interpreter on a Windows computer using Firefox as web browser.
Python Vscode Installing Python Extension for Visual Studio Code - Windows In this quick blogpost, I will share the steps that you can follow in order to install the Python extension for Visual Studio Code (VSCode) on a Windows computer using Firefox as web
Git Installing Git - Windows In this quick blogpost, I will share the steps that you can follow in order to install git(2.31.0) on a Windows computer using Firefox as web browser. After completing all the steps of
Jekyll Installing Jekyll - Windows In this quick blogpost, I will share the steps that you can follow in order to install jekyll (4.2.0) on a Windows computer using Firefox as web browser and the command prompt. After
Java Installing Java - Windows In this blogpost, I will share the steps that you can follow in order to install Java (1.8.0_281) on a Windows computer using Firefox as web browser.