Archive

• SOC 202 FakeGPT — LetsDefend
  2026-03-02 · lets-defend, blue-team, cybersecurity
• Phishing “Interview Invitation” — Malicious Word Doc.
  2026-02-27 · cybersecurity, lets-defend
• AS-Rep Challenge(LetsDefend)
  2025-11-26 · letsdefend-writeup, letsdefendio, blueteamlabs, cybersecurity
• SOC205 —Event 231 Malicious Macro has been executed (LetsDefend)
  2025-11-26 · blueteamlabs, cybersecurity, letsdefendio, letsdefend-writeup
• Interlock Ransomware
  2025-11-23 · letsdefendio, cybersecurity-training, lets-defend, blueteamlabs
• Golden Ticket (Walkthrough)
  2025-11-19 · cybersecurity-training, cybersecurity-awareness, blueteamlabs, letsdefend-writeup, letsdefendio
• SOC227 — Microsoft SharePoint Server Elevation of Privilege
  2025-11-13 · cybersecurity, lets-defend, blueteamlabs, letsdefendio
• SOC235 — Atlassian Confluence Broken Access Control 0-Day CVE-2023–22515 (LetsDefend)
  2025-11-06 · blue-team, lets-defend, letsdefendio, cybersecurity
• Upstyle Backdoor (LetsDefend)
  2025-11-05 · letsdefend-writeup, blue-team, letsdefendio, cybersecurity
• Batch Downloader(LetsDefend)
  2025-11-05 · lets-defend, cybersecurity, blue-team, letsdefendio
• Brutus (hackthebox)
  2025-11-04 · blue-team, cybersecurity, hackthebox-walkthrough, hackthebox
• SOC239 — Remote Code Execution Detected in Splunk Enterprise (LetsDefend)
  2025-11-03 · lets-defend, cybersecurity, letsdefendio
• PHP-CGI (CVE-2024–4577)(LetsDefend)
  2025-11-03 · letsdefend-writeup, blueteamlabs, letsdefendio
• PowerShell Script (LetsDefend)
  2025-11-02 · letsdefend-writeup, letsdefendio, blueteamlabs
• SOC250 — APT35 HyperScrape Data Exfiltration Tool Detected (LetsDefend)
  2025-11-02 · letsdefendio, cybersecurity, blue-team, letsdefend-writeup
• Presentation As a Malware (LetsDefend)
  2025-11-01 · lets-defend, blue-team, letsdefendio, cybersecurity
• SOC246 — Forced Authentication Detected (LetsDefend)
  2025-10-31 · letsdefend-writeup, blue-team, cybersecurity, letsdefendio