-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathblog-index.htm
191 lines (176 loc) · 9.72 KB
/
blog-index.htm
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
<!doctype html>
<head>
<title>MattCASmith | A blog about cyber security and technology</title>
<meta name="description" content="MattCASmith.net is a blog about cyber security, technology, coding, and more." />
<meta name="robots" content="index, follow" />
<meta name="googlebot" content="index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1" />
<meta name="bingbot" content="index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1" />
<link rel="canonical" href="https://mattcasmith.net/" />
<link rel="next" href="https://mattcasmith.net/blog.htm" />
<meta property="og:locale" content="en_GB" />
<meta property="og:type" content="website" />
<meta property="og:title" content="MattCASmith | A blog about cyber security and technology" />
<meta property="og:description" content="MattCASmith.net is a blog about cyber security, technology, coding, and more." />
<meta property="og:url" content="https://mattcasmith.net/" />
<meta property="og:site_name" content="MattCASmith" />
<meta name="twitter:card" content="summary_large_image" />
<meta name="twitter:site" content="@mattcasmith" />
<link rel="alternate" type="application/rss+xml" title="MattCASmith » feed" href="/feed.xml" />
</head>
<head>
<style>
html {
display: none;
}
</style>
<title> | MattCASmith</title>
<meta name="viewport" content="width=device-width, initial-scale=1">
<link rel="shortcut icon" href="/assets/images/favicon.png">
<link rel="stylesheet" href="/assets/css/styles.css">
<link href="https://fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,700;1,400;1,700&display=swap" rel="stylesheet">
</head>
<body>
<div id="site-container" class="home blog-index">
<div id="header">
<div id="header_left">
<a href="/"><img class="site_logo light" src="/assets/images/mcas_site_logo.png"></a>
<a href="/"><img class="site_logo dark" src="/assets/images/mcas_site_logo_dark.png"></a>
<a href="/"><h2>MattCASmith</h2></a>
</div>
<div id="header_right">
<a target="_blank" href="https://twitter.com/mattcasmith"><img class="link_icon_twitter" src="/assets/images/twitter_icon.png"></a>
<a target="_blank" href="mailto:[email protected]"><img class="link_icon_email light" src="/assets/images/email_icon.png"></a>
<a target="_blank" href="mailto:[email protected]"><img class="link_icon_email dark" src="/assets/images/email_icon_dark.png"></a>
</div>
</div>
<div id="home_posts_list">
<div id="blog-index-pinned">
<div class="home_content_box_title">
<div class="home_content_box_title_left">
<h2>Blog index</h2>
</div>
<div class="home_content_box_title_right">
<a href="/blog.htm">
<div class="home_content_box_button">
All posts
</div>
</a>
</div>
</div>
<a href="/2021/01/01/backutil-windows-backup-utility"><div class="blog-index-pinned-post">
<span class="blog-index-pinned-post-title">Backutil</span>
<p>Python-based backup utility for Windows</p>
</div></a>
<a href="/2022/12/03/parsing-login-sessions-windows-security-event-log-powershell"><div class="blog-index-pinned-post">
<span class="blog-index-pinned-post-title">EVTX login session parser</span>
<p>PowerShell script to correlate login/logout events</p>
</div></a>
<a href="/reading-list.htm"><div class="blog-index-pinned-post">
<span class="blog-index-pinned-post-title">Reading list</span>
<p>Recommended cyber security and tech books</p>
</div></a>
</div>
<div id="blog-index-cols">
<div class="blog-index-col">
<h2 class="green-title">Digital forensics and incident response</h2>
<h2>Linux</h2>
<ul>
<a href="/2022/02/22/bash-history-basics-behaviours-forensics"><li>.bash_history</li></a>
<a href="/2017/03/24/automating-a-brute-force-web-attack/"><li>Brute force scripting</li></a>
<a href="/2020/08/27/network-connections-packet-crafting-linux-command-line"><li>Packet crafting</li></a>
</ul>
<h2>Windows</h2>
<ul>
<a href="/2019/02/15/python-windows-forensics-google-chrome-history/"><li>Chrome browsing history</li></a>
<a href="/2019/01/18/python-windows-forensics-security-event-log/"><li>Event logs</li></a>
<a href="/2019/04/14/python-windows-forensics-mozilla-firefox-browsing-history/"><li>Firefox browsing history</li></a>
<a href="/2019/04/07/investigate-network-connections-netstat/"><li>Network connections</li></a>
<a href="/2019/03/15/python-windows-forensics-microsoft-office-recent-files/"><li>Office recent files</li></a>
<a href="/2018/11/23/python-forensics-tools-windows-prefetch/"><li>Prefetch</li></a>
<a href="/2018/04/08/incident-triage-identifying-the-source-of-a-malware-infection/"><li>Recent links</li></a>
<a href="/2018/12/15/python-windows-forensics-recycle-bin-deleted-files/"><li>Recycle Bin</li></a>
<a href="/2022/12/15/investigating-explorer-temporary-zip-folders"><li>ZIP temporary folders</li></a>
</ul>
<h2>Network</h2>
<ul>
<a href="/2022/01/08/sans-holiday-hack-2021-slot-machine"><li>HTTP request forgery</li></a>
<a href="/2020/02/02/https-vpns-private-internet-browsing/"><li>HTTPS and VPNs</li></a>
</ul>
<h2>Miscellaneous</h2>
<ul>
<a href="/2024/07/20/crowdstrike-bug-edr-setting-record-straight"><li>Endpoint detection and response (EDR)</li></a>
<a href="/2021/04/02/file-carving-recovering-deleted-file-disk-image"><li>File carving</li></a>
<a href="/2018/06/01/what-a-security-operations-centre-soc-is-and-how-it-works/"><li>Security operations centres
</li></a>
<a href="/2022/01/08/sans-holiday-hack-2021-yara-rules"><li>Yara rule evasion</li></a>
<a href="/2020/09/12/cracking-password-protected-zip-file-fcrackzip"><li>ZIP file password cracking</li></a>
</ul>
</div>
<div class="blog-index-col">
<h2 class="green-title">Cyber security</h2>
<h2>Books</h2>
<ul>
<a href="/reading-list.htm"><li>Reading list</li></a>
<a href="/2018/08/10/review-infosec-rock-star-ted-demopoulos/"><li>InfoSec Rock Star</li></a>
<a href="/2018/11/03/threat-modelling-designing-for-security-review/"><li>Threat Modelling</li></a>
</ul>
<h2>Training and certifications</h2>
<ul>
<a href="/2017/02/24/halfway-point-im-now-gsec-certified/"><li>SANS SEC401 (GSEC)</li></a>
<a href="/2017/03/27/finishing-line-ive-passed-my-gcih-exam/"><li>SANS SEC504 (GCIH)</li></a>
<a href="/2018/10/19/sans-for500-windows-forensic-analysis/"><li>SANS FOR500 (GCFE)</li></a>
<a href="/2020/03/28/sans-for508-incident-response-threat-hunting-digital-forensics/"><li>SANS FOR508 (GCFA)</li></a>
</ul>
<h2>Miscellaneous</h2>
<ul>
<a href="/2017/04/03/rick-sanchez-explains-command-injection/"><li>Command injection</li></a>
<a href="/2018/09/07/seven-tips-new-cyber-security-consultants/"><li>Consulting</li></a>
<a href="/2023/11/26/modular-soc-centralisation-repeatability-automation"><li>Modular SOC</li></a>
<a href="/2020/02/15/pi-hole-samsung-smart-tv/"><li>Pi-hole</li></a>
<a href="/2018/06/23/how-passwords-work-a-simple-demonstration-in-python/"><li>Passwords</li></a>
</ul>
<h2 class="green-title">Technology and programming</h2>
<h2>Cloud</h2>
<ul>
<a href="/2020/11/15/aws-deploy-connect-sql-database-cloud"><li>AWS - SQL databases</li></a>
<a href="/2020/11/15/aws-deploying-virtual-network-server-cloud"><li>AWS - VPCs and EC2 servers</li></a>
</ul>
<h2>PowerShell</h2>
<ul>
<a href="/2023/02/17/winget-automate-software-deployment-new-laptop"><li>Winget software deployment</li></a>
</ul>
<h2>Python</h2>
<ul>
<a href="/2017/11/30/creating-beautiful-graphs-in-python-with-plotly/"><li>Charts and graphs</li></a>
<a href="/2018/05/13/checking-dns-requests-against-a-domain-blacklist-in-python/"><li>DNS request</li></a>
<a href="/2018/04/29/automatically-generating-soc-emails-with-a-python-script/"><li>Emails (generating)</li></a>
<a href="/2019/03/09/raspberry-pi-home-hub-email-briefing/"><li>Emails (sending)</li></a>
<a href="/2021/05/03/multiprocessing-python"><li>Multiprocessing</li></a>
<a href="/2018/09/14/visualising-connected-hosts-with-a-python-generated-network-diagram/"><li>Network diagrams</li></a>
<a href="/2021/03/26/sqlite-databases-python"><li>SQLite</li></a>
<a href="/2017/12/18/grabbing-domains-and-urls-from-tcpdump-data-using-python/"><li>tcpdump</li></a>
<a href="/2022/08/21/using-tkinter-gui-python-apps"><li>Tkinter (GUIs)</li></a>
<a href="/2017/11/24/fetching-and-filtering-tweets-in-python-with-tweepy/"><li>Twitter</li></a>
</ul>
<h2>Splunk</h2>
<ul>
<a href="/2018/07/22/security-log-analysis-how-to-group-by-two-fields-in-splunk/"><li>Grouping by two fields</li></a>
<a href="/2021/05/01/installing-splunk-free-virtual-machine-log-analysis"><li>Splunk Free</li></a>
</ul>
<h2>SQL</h2>
<ul>
<a href="/2019/02/01/sql-alter-table-add-modify-drop-columns/"><li>ALTER TABLE</li></a>
<a href="/2018/12/21/sql-joins-inner-left-right-outer/"><li>JOINs</li></a>
<a href="/2018/10/12/basic-sql-queries-select-from-where-operators/"><li>SELECT, FROM, and WHERE</li></a>
</ul>
</div>
</div>
<div id="footer">
© 2016-24 MattCASmith
<span class="home-link">Personal blog - does not reflect views of employers past or present</span>
</div>
<script data-goatcounter="https://mattcasmith.goatcounter.com/count"
async src="//gc.zgo.at/count.js"></script>
</div>
</body>
</html>