Cyber Security Blog
-
From PeMCP to Arkana: 289 Tools, One AI-Driven Malware Analysis Platform
Back in October, I introduced a couple of tools I’d been building — ProcmonMCP and the PeMCP Toolkit. If you read that post, you’ll know the whole thing started from a simple frustration: spending far too many hours manually sifting through binary analysis data, knowing the answer was right there if only I could get…
-
A Better Way to Analyse: Introducing My New Tools, ProcmonMCP & the PeMCP Toolkit
If you’ve ever worked in digital forensics or malware analysis, you know the feeling. You’re staring at a screen, buried under a mountain of data. It might be a Procmon trace with millions of events, or a packed executable that refuses to give up its secrets. I’ve lost count of the hours I’ve spent manually…
-
Cisco CVE-2024-20295 – “Fox in a box” CLI Command Injection Disclosure
Cisco Integrated Management Controller CLI Command Injection Vulnerability – Disclosure
-
Rooting a Cisco IMC for peace and power!
A brief introduction TL;DR: In a home lab project, a Cisco UCS server was acquired to replace an older Dell server. However, the Cisco server’s fans were excessively loud and power-intensive. By gaining root access to the server’s Cisco Integrated Management Controller (IMC), which is similar to HP’s iLO or Dell’s iDRAC, it was possible…
-
SEC401 Training and GSEC Exam
I’ve been busy over the last month or so and have completed the GIAC SEC401 training course and the associated GSEC exam. Really pleased to say I passed with a 93% score. SEC401 covers a lot of ground — defence in depth, access control, cryptography, network security, incident handling, and cloud security fundamentals. It’s one…
-
GFACT – Done!
Its done!
-
Entering the world of Cyber Security
This blog will cover my trials and tribulations of taking my existing IT career from infrastructure and cloud to the fascinating world of cyber security. I’ve spent years working in IT infrastructure and cloud services — building, migrating, and managing systems. It’s solid, rewarding work, but I’ve always been drawn to the security side of…