Byte by Byte: My Path into Cyber

  Exploring the SCF File NTLM Hash Disclosure Vulnerability While this isn’t a direct post about my cyber lab, it is certainly cyber-related. I recently started using the Cyware social platform to stay updated on the latest breaches and attack trends. Cyware aggregates articles from sources like Hacker News and Bleeping Computer, which is where today’s featured article comes from. About Cyware I find the platform to be insightful and it has lots of information about the vulnerabilities, attacks and general cybersecurity news one of the things I like about the platform is the fact that it brings together a vast number of third-party sources in one place, so I don’t have to go and look through several websites and platforms   I like the features that cyware offer I can customise my feed, so I see article that are of interest to me, I find it very easy to search for content on a specific subject using the search function. I am still exploring the cyware platform but on ...

Initial setup To start  I downloaded the .osa file from the  wazuh website ( https://wazuh.com ) and then installed it in my virtualbox hypervisor. Then I booted up my fedora linux VM and the wazuh VM with the dashboard and manager on.  After I had logged in to the wazuh VM with the default credentials I used the ip a command to find out the ip address of the wazuh VM. As from reading the documentation I’d need this later. In my fedora VM I opened a terminal and used the commands on the wazuh website to install the agent on the VM. After some time the installation was completed and I had to update the. conf file with the IP address of the wazuh manager. This is important because  the file is a generic file that needs to be modified to make it specific to each individual setup.  All was going well up to this point. I tried to get the fedora VM to talk to the wazuh VM. The problems I encountered It was here the problems started when I tried to pi...

Thank you for joining me on this journey in to cybersecurity, I have a home lab and will be posting here about how I set it up and the practical exercises I do along my journey. Currently I have a Windows 11 PC with virtualbox installed. I have kali linux, metasploitable, and 4 Linux distros for endpoints. (mint, fedora, elementary and zorin). I will be expanding and changing my lab as my journey progresses. My next steps will be to install a SIEM for this I’ll be using wazuh and elastic stack.

  Hello, my name is Mark, and I am writing this blog to document my journey into cybersecurity. My fascination with computers started at an early age with the original BBC computers in primary school, as time progressed, I learnt more about computers and started building my own PC’s and repairing laptops, it was a chance encounter when I was watching a documentary about the Stuxnet work that sparked my interest in cyber and ever since then I have been fascinated and intrigued by the subject. I hope you come on this journey with me and find it as interesting as I do.