feb 2026

TryHackMe ItsyBitsy

SIEM investigation using ELK to detect C2 communication. BITSAdmin abuse, Pastebin payloads, and MITRE ATT&CK mapping.

easy · siem · elk jan 2026

TryHackMe Benign

Analyzing anomalous process execution on a compromised host using Splunk for threat detection and investigation.

easy · siem · splunk fev 2024

CVE-2024–42327

Real-world exploitation of a critical SQL injection in Zabbix 7.0.0. From API authentication to privilege escalation and RCE attempts in production.

critical · sqli · rce · prod env