~/writeups
Writeups & Research
Evidence, not just claims
Investigation steps, evidence chains, lessons learned, and defensive takeaways — from SOC alert triage to malware analysis and lab exploitation. Each writeup ends with what a defender should do about it.
SOCMay 2026 · Medium
Phishing Incident ResponseInvestigating a credential phishing alert, analyzing email headers, and containing the threat.
→
MalwareApr 2026 · Medium
Emotet Phishing Doc AnalysisStatic and dynamic analysis of an Emotet-laced Word document — macro deobfuscation, C2 extraction, and IOCs.
→
HackTheBoxApr 2026 · Easy
Lame — Easy Machine WalkthroughExploiting a vulnerable Samba service for initial foothold and root access.
→
TryHackMeApr 2026 · Easy
Basic Pentesting — Room WalkthroughEnumeration, SMB share discovery, SSH brute forcing, and SUID privilege escalation.
→