https://mistan.dev/writeups/ Technical security writeups — SOC investigations, malware analysis, and pentest walkthroughs with evidence and defensive takeaways. en https://mistan.dev/writeups/soc-phishing-response/ https://mistan.dev/writeups/soc-phishing-response/ Fri, 01 May 2026 00:00:00 GMT SOC triage walkthrough — investigating a credential phishing alert, analyzing email headers, and containing the threat. https://mistan.dev/writeups/mal-emotet-analysis/ https://mistan.dev/writeups/mal-emotet-analysis/ Sat, 25 Apr 2026 00:00:00 GMT Static and dynamic analysis of an Emotet-laced Word document — macro deobfuscation, C2 extraction, and IOCs. https://mistan.dev/writeups/htb-lame/ https://mistan.dev/writeups/htb-lame/ Mon, 20 Apr 2026 00:00:00 GMT HackTheBox easy machine walkthrough — exploiting a vulnerable Samba service for initial foothold and root access. https://mistan.dev/writeups/thm-basic-pentesting/ https://mistan.dev/writeups/thm-basic-pentesting/ Wed, 15 Apr 2026 00:00:00 GMT Walkthrough of TryHackMe's Basic Pentesting room — enumeration, brute forcing, and privilege escalation on a vulnerable Linux machine.