Splunk BOTSv3 Install and Configuration

Introduction Splunk Boss of the SOC (BOTS) is an awesome capture the flag event that I have had the privilege of attending. Splunk have now released everything required to run your own BOTS v3.0, more information can be found here: https://www.splunk.com/en_us/blog/security/botsv3-dataset-released.html. Splunk have opensourced everything required to run a Splunk BOTS v3.0 event including the… Continue reading Splunk BOTSv3 Install and Configuration

Handy Windows Shortcuts / Commands

This page is intended to be updated as and when we come across handy Windows commands useful for general Windows usage. Create a Shutdown Shortcut Create a new shortcut Enter the following for the location: %windir%\system32\Shutdown.exe -s -t 00Set the name to Shutdown, click Finish. Change the icon, otherwise, it will use the icon reserved… Continue reading Handy Windows Shortcuts / Commands

Operational Security (OPSEC) for The Cyber Intel Analyst

All too often I have seen basic operational security practices not being adhered to by analysts when performing their analysis. This article is aimed at the Cyber Security Professional and is designed to provide guidance on general dos and don'ts when conducting intrusion analysis. This is by no means an exhaustive list but will hopefully… Continue reading Operational Security (OPSEC) for The Cyber Intel Analyst