@Itsjustme27

Build an ARP Toolkit — Attack and Detection in C

1d ago · 7 min read · I spend a lot of time looking at alerts that say "possible MITM activity" or "ARP anomaly detected." They show up in the SIEM, get triaged, and usually turn out to be benign — a NIC failover, a miscon

From Log Reader to Packet Crafter — Building DNS from Scratch in C

Mar 18 · 9 min read · It's me again! As a SOC Analyst, I spend my days staring at logs I don't fully understand. So I decided to build the thing that generates them. Why I built this? I was on my desk staring at Fortigate

Beyond the Inbox: 5 Counter-Intuitive Truths from the SOC Frontlines

Feb 23 · 4 min read · About the Author I am Prayush Hada, a SOC Analyst in CryptoGen Nepal. This post synthesizes my findings during my SOC internship, where I moved from following alerts to investigating the human logic b

Wazuh Password Reset Guide

Feb 1 · 2 min read · Part I: For Docker Installations In Docker, you must change the persistent files on the host first, then apply them inside the container. 1. Generate the Password Hash Access the indexer container to use the hash tool: docker exec -it -u 0 single-no...

WannaCry Ransomware Analysis Using Logpoint SIEM

Dec 16, 2025 · 15 min read · Hack-A-Flag 2025 challenge experience We, Team Y3ti@Sec, had participated in the first ever SIEM CTF Hack-A-Flag 2025, organized by IEEE Computer Society Pulchowk & Logpoint. The article is about the first flag pwned in the competition. Executive S...