HaircutFish · @haircutfish
45 followers · 94 posts · Server infosec.exchangeHere is my write-up on Task 6 of the Brim room. This was an exercise looking at a C2 detection from CobaltStrike. Head over to Medium or my website to check it out!!!
#tryhackme #brim #soclevelonepath
HaircutFish · @haircutfish
45 followers · 92 posts · Server infosec.exchangeHere is my latest write-up for the Brim room on TryHackMe, this is finishing up before the exercise sections. Check out this awesome write-up on both medium and my website!!!
#TryHackMe #Brim #SocLevelOnePath
https://medium.com/@haircutfish/tryhackme-brim-task-4-default-queries-task-5-use-cases-cd31926a1905
#tryhackme #brim #soclevelonepath
HaircutFish · @haircutfish
45 followers · 88 posts · Server infosec.exchangeHere is the start of the Brim room, Tasks 1 thru 3, in these tasks you get to learn the fundamentals of the program. Then in the 3rd task you get to get you hands wet by using Brim, a pretty awesome tool!! Make sure you check out my write-up on it on Medium and my website!!!
#tryhackme #brim #soclevelonepath
HaircutFish · @haircutfish
45 followers · 85 posts · Server infosec.exchangeFinishing off the Zeek Exercise room today, I got to work with zeek on phishing and log4j. I've said it once and will say it again, I love to work in the command line. Make sure you check out my write-up on medium and on my website in a little bit!!!!
#tryhackme #zeek #soclevelonepath
HaircutFish · @haircutfish
45 followers · 84 posts · Server infosec.exchange
Starting with the Zeek Exercise room today, using a lot of Commandline Kung-Fu to discover the information needed for the question to answer them. Great follow-up room!!! Write-up on the tasks 1 and 2 are on Medium and will be on my website later today, go check them out!!!
#tryhackme #zeek #soclevelonepath
HaircutFish · @haircutfish
45 followers · 81 posts · Server infosec.exchangeFinished off the Zeek room!!! Lot's of Zeek-cut and Command Line Kung-fu, awesome time!!!! You need to check out this room out, if you haven't!!! Amazing room, check out my write-up on medium, then later today on my website!!
#TryHackMe #Zeek #SocLevelOnePath
https://medium.com/@haircutfish/tryhackme-zeek-task-7-zeek-scripts-scripts-and-signatures-task-8-zeek-scripts-frameworks-1bbab9f9be74
#tryhackme #zeek #soclevelonepath
HaircutFish · @haircutfish
45 followers · 81 posts · Server infosec.exchangeFinished off the Zeek room!!! Lot's of Zeek-cut and Command Line Kung-fu, awesome time!!!! You need to check out this room out, if you haven't!!! Amazing room, check out my write-up on medium, then later today on my website!!
#TryHackMe #Zeek #SocLevelOnePath
#tryhackme #zeek #soclevelonepath
HaircutFish · @haircutfish
45 followers · 81 posts · Server infosec.exchange
Today we have more on Zeek!!! This time we learn about Zeek signatures and scripts, and running a lot of zeek-cut with piping!! I LOVE IT!! Definitely a room that you need to check out!! The write-up is posted on medium, and will be up on my website later today!!
#tryhackme #zeek #soclevelonepath
HaircutFish · @haircutfish
45 followers · 79 posts · Server infosec.exchange
Starting off the week with the Zeek room!! When I get to work in the command line is always a good day!! In this room I start to learn about Zeek and Zeek cut. Head over to medium and check out my write-up on Task 1 through 3!!
#tryhackme #zeek #soclevelonepath
HaircutFish · @haircutfish
45 followers · 77 posts · Server infosec.exchange
Finishing off the NetworkMiner room, this practical takes everything you have learned so far and putting it into researching/looking for the current information in the pcap file. Awesome tool for parsing smaller pcap files and getting some basic knowledge. Check out my write-up on the topic on medium!!!
#tryhackme #NetworkMiner #soclevelonepath
HaircutFish · @haircutfish
45 followers · 77 posts · Server infosec.exchange
In today's NetworkMiner room Tasks, learned a little more about the different menu tabs. Also, about the features of the different versions. So that you have a good grasp of the tool you are using. Check out my write-up on the Tasks 5 & 6 over on medium!!
#tryhackme #NetworkMiner #soclevelonepath
HaircutFish · @haircutfish
44 followers · 74 posts · Server infosec.exchange
Starting the NetworkMiner room, and learning about a new tool to help parse smaller pcap files. Pretty neat little tool, able to pulls some great information!!! Make sure you check this out along with my write-up on the first four tasks!!!!
#TryHackMe #NetworkMiner #SocLevelOnePath
https://medium.com/@haircutfish/tryhackme-networkminer-task-1-through-task-4-527779fb49b7
#tryhackme #NetworkMiner #soclevelonepath
HaircutFish · @haircutfish
43 followers · 69 posts · Server infosec.exchangeHere is the write-up for the Snort Challenge - Live Attack Room. This was so much fun to do!!! First looking at the live traffic, then gaining information that you use to create a rule to block malicious traffic. This was so interesting, head over to medium and check out my write-up on the room!!
#TryHackMe #Snort #SocLevelOnePath
https://medium.com/@haircutfish/snort-challenge-live-attacks-room-f65858077692
#tryhackme #snort #soclevelonepath
HaircutFish · @haircutfish
43 followers · 69 posts · Server infosec.exchange
Finishing off the Snort Challenge Basics room with creating a Snort rule to detect Log4j. I loved this room and can't wait to start the next one!!! Make sure you check out this room, and my write-up on it!!!!
#tryhackme #snort #soclevelonepath
HaircutFish · @haircutfish
41 followers · 64 posts · Server infosec.exchange
Today's task was fixing syntax errors in Snort rules. This was fun to look over, and make the fixes. As you make the fixes, you really understand what you've been working on and have the sense of knowing you are learning Snort rules and getting better at them!! So head over to my medium and check out my write-up on the task!!
#tryhackme #snort #soclevelonepath
HaircutFish · @haircutfish
41 followers · 62 posts · Server infosec.exchangeHere is Task 4 & 5 of the Snort Basic Challenge room. This time got to write rules for PNG, GIF, and Torrent files. Then do some investigation of them. Super fun stuff, make sure you check it out if you haven't yet!!
#tryhackme #snort #soclevelonepath
HaircutFish · @haircutfish
41 followers · 62 posts · Server infosec.exchange
Here is the first of what will definitely be a couple of write-ups on the Snort challenge basics room. A lot of writing but, as you go through it you do a lot of repetitive things like clear the logs, and making changes / building upon rules you have created. I loved it!!!! Helps to drill in and drive home the teaching, so you learn and know it!!!!. Make sure you do this room after the Snort room!!! Don't forget to check out my write-up on the first three tasks on medium as well!!
#tryhackme #snortchallengebasics #soclevelonepath
HaircutFish · @haircutfish
40 followers · 59 posts · Server infosec.exchange
Here it is, after countless time putting in the work, the finished Snort room write-up!!! Today I got to get my hands on writing Snort rules, which was a challenge but once you start to figure it out it really isn't to difficult. So if you haven't checked out this room yet do yourself a favor and do so!!!! Don't forget to check out my write-up on it as well!!
#tryhackme #snort #soclevelonepath
HaircutFish · @haircutfish
40 followers · 57 posts · Server infosec.exchange
Today, got to get my hands even dirtier in the Snort command line and output!!! To start off, learned about the IDS/IPS mode, then worked with pcap files. Truly Awesome, if you have the time and haven't yet go check out this room!!! While your at it, check out my write-up as well!!!
#tryhackme #snort #soclevelonepath
HaircutFish · @haircutfish
40 followers · 57 posts · Server infosec.exchange
Today I really got my hands dirty with Snort, and I liked it!!!! Such a fun and interesting tool, granted anytime I get to work in the command line is a fun and interesting time. Make sure you go check out my write-up on analyzing some snort logs!!!
#tryhackme #snort #soclevelonepath