Adversary Emulation & DFIR Threat Hunting Lab using Sysmon and Splunk

Summary Built a full DFIR Attack–Defense Lab using Kali, Windows 10, Splunk, and Sysmon to simulate adversary TTPs (ingress, execution, discovery, persistence, beaconing) and perform log-based d...

Oct 20, 2025 DFIR, SOC

Practical Malware Analysis Chapter 5

Toolkit This lab uses a standard set of tools for advanced static analysis. Tool Type Purpose Typical Usage & Notes PE Studio St...

Sep 20, 2025 PMA

Practical Malware Analysis chapter 1 & chapter 3

Toolkit This labs uses a standard set of tools for basic static analysis & basic dynamic analysis. Tool Type Purpose Typical usage / notes ...

Sep 12, 2025 PMA

EML File

Phishing mail analysis EML File Summary summary The email pretends to be from a legitimate source and includes an attachment that, at first glance, appears to be a harmless file (in this case, ...

Oct 8, 2024 EML

Malware analysis and Reverse Engineering challenges from Cyber talents.

Cyber Talents Malware Reverse Engineering Challenges

Salamander Salamander Basic static analysis using strings tool we found We found FLAG{0} & {0_54l4m4nd3r_0} Solution: FLAG{0_54l4m4nd3r_0} Pure Luck Pure Luck About file: Bas...

Jun 3, 2024 CTF

Cryptography challenges from Cyber talents..

Cyber Talents Cryptography Challenges

Crack the Hash Crack the Hash First step we need to analyze this hash. We can use Hash Analyzer where we found it is an MD5 hash. We can decrypt it by using MD5 Decryptor. Solution: Iamthefl...

May 13, 2024 CTF