Posts

Post Def Con Plans

Just over one year into my journey in infosec, I was able to go to Def Con 31. This was quite an adventure, but really this did more to clarify what I want to do moving forward than it did provide value in and of itself. To start with my experience at Def Con, I just want to get the first thing out of the way: why, why do people enjoy “linecon” so much?

Am I Spying on Myself?

Yes, yes I am. Back almost a year ago, in Logfile_dump Week 15/22 I said that I tried to set up the combo of RITA/Zeek/MongoDB and Bettercap, like how Strand talks about in the BHIS webcast “No SPAN Port? No Tap? No Problem!” The idea being that Zeek needs packets to be able to zeek them, and then that can forward the logs to RITA in order to do beacon detection, but most people don’t have hardware that can get all those packets so Zeek isn’t going to work.

eJPT Review

As of October 7th, I am officially eJPT certified. I’d be remissed if I didn’t write about my experience, and want to share my takeaways and where I plan on going from here. I was really nervous going into this exam. I’ve never considered myself a “hacker” and I’m not particularly advanced when it comes to offensive cybersecurity. I became interested in cybersecurity at the beginning of 2021 and have steadily progressed in my skills and developing my interests.