Blogs

Azure Hub-and-Spoke Architecture Using Terraform Description To design and deploy a secure, scalable Azure infrastructure using a hub-and-spoke topology. This project leverages Terraform for Infrastructure-as-Code (IaC) and includes network segmentation, centralized firewall, controlled access via jumpbox, and log analytics integration. Structure hub-spoke-architecture/ ├── provider.tf ├── main.tf ├── variables.tf ├── vnet.tf ├── firewall.tf ├── peerings.tf ├── routes.tf ├── jumpbox.tf ├── webvm.tf ├── appvm.tf └── log_analytics.tf Diagram What This Architecture Enables This infrastructure design delivers centralized, secure, and controlled access across the Azure environment, with the following key outcomes:...

A Deep Dive into Encoding, Ciphers, and Modern Cryptography Method Purpose Example Reversible Key Encoding Transformation for safe transmission(Conversion) Base 64 Yes No Encryption Securing data from unauthorized access(Secrecy) AES, RSA Yes(With Key) Yes Hashing Ensuring Data integrity(Integrity) SHA-256, MD5 No No Encoding: Representing Data in Different Forms Base Encoding Base encoding methods are used to represent binary data in a readable format....

Incident Response Training Lab with Velociraptor Description This project simulates a real-world cybersecurity incident investigation using Velociraptor. Environment Setup Virtual Machines Velociraptor Server: Ubuntu Server (4 GB RAM, 2 CPUs) windows endpoint: Windows 10 Workstation (4 GB RAM, 2 CPUs) Attack Machine: Kali Linux Machine (4 GB RAM, 2 CPUs) Note: Set the VM’s Networking to NAT, so that the machines can ping each other or in the same network...

Volatility CheatSheet (Forensics - THM) Description Volatility is a powerful open-source memory forensics framework used by cybersecurity professionals and incident responders to analyse memory dumps. It supports Linux, Windows, and macOS memory analysis and offers a comprehensive set of plugins to extract various types of information, such as processes, network connections, registry keys, and more. Installation You can download the required package from Volatility’s github page. releases Creating a Symlink...

Binary Reverse Engineering with Reversing Elf Description Reverse engineering is the process of analyzing a product, system, or software to understand its design, architecture, functionality, and behavior, often with the goal of replicating, modifying, or improving it. In the context of software, reverse engineering specifically refers to the analysis of compiled code (binaries) to uncover its original source code or to understand its inner workings.The main goal is to understand the program’s logic, identify vulnerabilities, extract useful information, or modify its behavior....

Practicing Buffer Overflow with Brainpan 1 Description Practicing buffer overflow attack using Immunity debugger. This is also a walkthrough on a THM free trial box called Brainpan 1 Environment and Tools Used Kali Linux Windows 10 Immunity Debugger Python Recon NMAP Scanning the box via Nmap, we could see 2 ports are open, port 10000 where a python http server and something else is running on port 9999....

Creating an API documentation of a website from scratch Description Reverse engineering an API assists in discovering potential endpoints for evaluating its functionality, a critical aspect of testing and analysis. When access to official documentation or the API’s original codebase is unavailable, these methods enable the manual creation of documentation. Environment and Tools Used Application Here I am using Parabank by Parasoft. Parabank is a web application used to demonstrate web, API testing....

Learning Assembly with NASM Assembly language Assembly language is used to communicate directly with computer hardware. It is architecture-specific and is used in the development of OS and embedded systems programming Notable Unix System Calls Process creation syscall (execve) - Allows execution of the new program I/O syscall (open, read, write) - Exploit file handling vulnerabilities to access, read, or write sensitive files, such as configuration files, passwords, or private user data...

Practical Buffer Overflow with FreeFloat FTP Server Description A walkthrough illustrating the methodology of the Buffer Overflow attack, focusing on the FreeFloat FTP Server. Lab Setup -Virtual box -A windows XP machine -Favourite Pentest Distro -Favourite Code editor Softwares and Tools -Download or Install Immunity Debugger and the Free Float FTP server onto the Windows XP -Download the mona.py file to Windows XP -Need Metasploit and SPIKE tools on the Pentest box (Here, I won’t be using spike script but would manually exploit the application)...

Splunk Enterprise with remote Hosts Description This is a sample project to setup a Splunk SIEM lab and forward alerts and events from remote hosts to the splunk server for monitoring and analysing Prerequisites - Virtual box - Ubuntu server iso for hosting our Splunk server - Windows machine (here using windows 7) - Splunk Enterprise Edition and Splunk forwarder (we can get a 14 day trial version from Splunk to use the enterprise edition) Setup - Create 2 VM in Virtual box with Bridged network adapter and enabling Promiscuous mode...