Tag: cybersecurity education

Another day, another challenge…

In this post, we’re starting a new series, the Advent of Cyber, hosted by TryHackMe. This is the fourth year of the Advent of Cyber, where a challenge is released every day leading to Christmas. There will be 25 challenges; we’re McSkidy, an elf trying to save Christmas.

In our fourteenth challenge, Elf McSkidy has to review the web application security. She consults Elf Exploit McRed who discovers there’s a web vulnerability – IDOR. Can Elf McSkidy find the IDOR on the server?

The topics explored in this challenge are web applications and databases. Along with learning about OWASP (Open Web Application Security Project), access control, and IDORs (Insecure Direct Object Reference)

Can Elf McSkidy find the IDOR on the server? Find out below!

If you enjoy my content, buy me a coffee. Link –> http://buymeacoffee.com/thefluffy007

Another day, another challenge…

In this post, we’re starting a new series, the Advent of Cyber, hosted by TryHackMe. This is the fourth year of the Advent of Cyber, where a challenge is released every day leading to Christmas. There will be 25 challenges; we’re McSkidy, an elf trying to save Christmas.

In our thirteenth challenge, the SOC team notice suspicious network activity after investigating the malware in Day 12 challenge. Santa’s SOC team needs to analyze the network traffic to see any malicious activity happening on the network.

The topics explored in this challenge are packet and packet analysis. The tool used is Wireshark which is an industry-standard tool for network protocol analysis and is used for traffic and packet investigations.

Can Santa’s SOC determine if there’s malicious activity on the network? Find out below!

If you enjoy my content, buy me a coffee. Link –> http://buymeacoffee.com/thefluffy007

Another day, another challenge…

In this post, we’re starting a new series, the Advent of Cyber, hosted by TryHackMe. This is the fourth year of the Advent of Cyber, where a challenge is released every day leading to Christmas. There will be 25 challenges; we’re McSkidy, an elf trying to save Christmas.

In our twelfth challenge, Forensics McBlue confirmed the malicious document spawned a suspicious binary. Forensics McBlue’s job is to further analyze the binary via Malware Analysis.

The topics explored in this challenge are malware analysis – why it’s important and how it should be done in a safe environment (such as a sandbox). Items to determine if malware is present such as new network connections, registry key modifications, and file manipulations. Finally, there were two tools that were discussed – Detect It Easy (DIE) and CAPA.

Can Forensic McBlue determine if suspicious file is malware? Find out below!

If you enjoy my content, buy me a coffee. Link –> http://buymeacoffee.com/thefluffy007

Another day, another challenge…

In this post, we’re starting a new series, the Advent of Cyber, hosted by TryHackMe. This is the fourth year of the Advent of Cyber, where a challenge is released every day leading to Christmas. There will be 25 challenges; we’re McSkidy, an elf trying to save Christmas.

In our eleventh challenge, Elf McDave clicked on a document and now there’s a command prompt running code on their computer. As Elf McBlue we create a memory dump and analyze the dump to determine the root cause.

The topics explored in this challenge are memory forensics and why it’s important. We’re also introduced to the volatility tool that can be used to determine processes and programs that were executed before a computer crash.

Can Elf McBlue dump the image to determine the root cause? Find out below!

If you enjoy my content, buy me a coffee. Link –> http://buymeacoffee.com/thefluffy007

Another day, another challenge…

In this post, we’re starting a new series, the Advent of Cyber, hosted by TryHackMe. This is the fourth year of the Advent of Cyber, where a challenge is released every day leading to Christmas. There will be 25 challenges; we’re McSkidy, an elf trying to save Christmas.

In our seventh challenge, Elf McSkidy accidentally opened an attachment and believed processes/commands were being executed in the background. McSkidy employs Forensic McBlue to determine if his suspicion is confirmed.

The topics explored in this challenge are reviewing a (potential) malware document through CyberChef.

Is McSkidy’s suspicions about the document correct? Find out below!

If you enjoy my content, buy me a coffee. Link –> http://buymeacoffee.com/thefluffy007