Here are some of my projects!
π Courses
Responsible Red Teaming | The Taggart Institute
Responsible Red Teaming is a seminar on the ethical, legal, and tactical considerations of how to perform red team operations that are safe, responsible, and practical. It includes written lectures and practical labs centered on how we can emulate cybercriminals without introducing the risk of real cyber crime.
This course asks you to think deeply about what it means to you to be a considerate, ethical, responsible red teamer. It will then show you how to translate responsibility into practical application and refine your tradecraft in the areas of C2 infrastructure design, malware emulation, and payload engineering.
This is not a course that teaches you how to be a red teamer. Itβs a course where you learn how to operate with honor.
Practical Malware Analysis & Triage (PMAT) | TCM Security Academy
Practical Malware Analysis & Triage teaches you the fundamentals of malware analysis for less than the cost of three bottles of water in Downtown Manhattan. Over 30,000 students worldwide!
Check out the preview videos below:
πPMAT YouTube Release
The first 5+ hours of PMAT is now available on YouTube. For free, for everyone, forever.
π₯οΈ TryHackMe Rooms
βοΈ Takedown
"Operator, look alive! Word just came down from command, the mission is GO π’ Get ready to step for the intel brief!"
Takedown is an Insane rated THM room. The Commanding Officer is very excited for this mission, Operator. Good luck!
TryHackMe Walkthroughs
π My GitHub
Iβm always up to something over on my GitHub page.
π΄Notable Selections
π― OffensiveNotion: Notion (yes, the notetaking app) as a C2
π¬ PMAT-Labs
π₯·πΌShadowSteal: Pure Nim POC for exploiting CVE-2021-36934
β¨CVE-2022-33891: Apache Spark Shell Command Injection Exploit POC
π§ͺ Research
π The Crown: Exploratory Analysis of Nim Malware DEF CON 615 talk - 1/25/22
π CVEs
CVE-2021-38699: Stored/Reflected XSS in TastyIgniter v3.0.7 Restaurtant CMS