~/moex0_

I specialize in Digital Forensics and Incident Response (DFIR). I write detailed analyses about security incidents, focusing on breaking down complex technical details into simple, understandable explanations.

DFIR Analyst • Black Hat Trainer

$ ls ./articles

2 articles

>_ LATEST

apt / Jul 15, 2024 · 37 min read

Investigating APT29 Exploiting TeamCity CVE-2024-27198

A detailed incident response case study analyzing APT29's exploitation of JetBrains TeamCity authentication bypass vulnerability, from initial access through lateral movement to ransomware deployment.

Read Article

active-directory

Mar 10, 2024 · 23 min read

Demystifying Kerberos

A comprehensive guide to understanding Windows Kerberos authentication, covering the protocol's components, ticket-based...

#kerberos #authentication #windows

Read

~/moex0_

$ ls ./articles

Investigating APT29 Exploiting TeamCity CVE-2024-27198

Previous Articles

Demystifying Kerberos