Blog

Prebuilt FlareVM and REMnux Vagrant Boxes, with Packer + Ansible templates for customization

Hands-On Guide to Debugging Obfuscated AutoIt Malware

Setting up a local Kubernetes + OpenCTI + Splunk environment for connector development and integration testing

Flashing TP-Link Archer C9 Router firmware to unbrick it

Supercharging LLMs with the MITRE ATT&CK knowledgebase.

Creating a Question Answering system with a LLM and Retrieval Augmented Generation (RAG).

Setting up OpenCTI and the Ask AI service, with a cloud or locally served LLM.

Analyzing the IcedID banking trojan.

Analyzing the Oski Stealer.

Analyzing the Gozi ISFB banking trojan.

Analyzing the Zero2Automated Course Cruloader custom sample.

Writing a string decrypter for an obfuscated RAT during a CTF challenge.

Taking FrostyGoop to the next level and attacking a simulated sorting machine.

A short functional analysis of the FrostyGoop ICS malware.

How to implement accurate melee tracing in Unreal Engine 5, as a prototype that brings together multiple concepts of game development.

In a university assignment, I was tasked with reversing GandCrab malware.

Fuzzing FreeImage with American Fuzzy Lop in the hope to uncover vulnerabilities.

Learn how to use SyncThing to synchronize KeepassXC databases across devices and regain ownership of your data.

First challenge of the TCM Academy Practical Malware Analysis and Triage course.

Second challenge of the TCM Academy Practical Malware Analysis and Triage course.