Recently I completed my GCIA [https://www.giac.org/certification/certified-intrusion-analyst-gcia] (GIAC Certified Intrusion Analyst) certification, which focuses on hunting for adversaries. The course and exam focus on monitoring, network traffic analysis, and intrusion detection. The benefit of this course is two-fold. First, it directly engages a skill set I
I recently completed the SANS FOR572 | Advance Network Forensics: Threat Hunting, Analysis, and Incident Response course delivered by Phil Hagen [https://www.linkedin.com/in/philhagen/] and the tested and certified in GIAC Network Forensic Analysis (GNFA). During my study time I wanted to dig deeper into the SOF-ELK distribution.
Recently I participated in Locked Shields, considered one of the biggest live-fire cyber defense exercises in the world. This was my second year being part of a blue team in such a fun and challenging event. Locked Shields is an annual exercise organized by the Tallinn-based NATO Cooperative Cyber Defence