Infosec Practitioner
So much has gone on since my last post back in 2023, but too much to go over honestly. I am rebooting this blog as of this post and hopefully can be more consistent in posting about stuff. So as we enter 2025 I want to take a look at upcoming stuff. First off I…
This year marked the first time I made it out to Defcon. I have known about this conference since the 90’s, just had not figured out a way to get out there and experience it. For those that want a TL;DR, it is a supersized conference. There are also plenty of smaller conferences that I…
Recently, SentinelOne had a blog post about how Lockbit Ransomware was using Windows Defender to side load Cobalt Strike. Considering that this technique I sat down to write up a query(that is available at my Github here) for a custom detection of this procedure based off the information in the SentinelOne Blog post. Here I…