Latest Posts

Simulating APTs For Fun

Simulating APTs For Fun

In the post I will explain how one could simulate an Advanced Persistent Threat (APT) using Praetorian’s Purple Team Attack Automation and MITRE’s ATT&CK framework.

Read More 

It's Me, FireEye!

A little over three years ago, while researching malware execution sandboxes, I found a stealth way to detect FireEye’s Malware Analysis System (MAS). In this blog post I will release the details.

Read More 

Three Honeypots and a Month After

I deployed three web honeypots, one in Singapore, another in Australia and another one in France. I then leveraged IVRE and Suricata to investigate the visitors, and respective traffic they generated.

Read More 

Latest Projects

Malware Classification

Malware Classification

Malware Classification is a workflow that makes use of Machine Learning to classify unknown Windows Portable Executable files.

More Information 
HPQPswdD

HPQPswdD

Small utility that can be used to decrypt HPQPswd encrypted passwords.

More Information