Tools & Defense Windows Hardening with VBS and Credential Guard: How It Works and How to Test It
A practical guide to Virtualization-Based Security, Credential Guard, HVCI, and LSA protection for red and blue teams.
2025-11
Tools & Defense 
Tools & Defense Active Directory Defense and Monitoring: Tiering, LAPS, and Detection Engineering
A practical defender's guide to AD tiering, LAPS, honeypot accounts, ADCS hardening, and the event IDs that catch attackers.
Tools & Defense Penetration Testing Methodology and Reporting: From Scoping to Executive Summary
A practical guide to running a structured penetration test with PTES, capturing solid evidence, scoring with CVSS, and writing reports that get fixed.
RE & Pwn x86-64 Assembly Primer for Reverse Engineers
A practical x86-64 assembly primer covering registers, the System V ABI, the stack, and GDB disassembly for reverse engineers.
RE & Pwn Getting Started with Ghidra for Reverse Engineering and Malware Analysis
A practical introduction to Ghidra's CodeBrowser, decompiler, function graph, data types, and scripting for RE and malware work.
RE & Pwn Reverse Engineering with radare2 and rizin: A Practical Walkthrough
A hands-on guide to static and visual binary reversing with radare2 and rizin, covering aaa, pdf, visual mode, and Cutter.
RE & Pwn Stack-Based Buffer Overflows: From Crash to Shell
A practical walkthrough of classic stack-based buffer overflows: EIP control, offset discovery, bad chars, and shell.
RE & Pwn Defeating ASLR, NX, and Stack Canaries: A Practical Exploitation Primer
How modern memory-protection layers (ASLR, NX, canaries) work and how attackers chain leaks, ret2libc, and brute force to bypass them.
RE & Pwn Return-Oriented Programming (ROP) Fundamentals: From Gadgets to ret2syscall
A practical introduction to ROP: gadgets, ROPgadget, ret2libc, ret2syscall, stack pivots, and the defenses that stop them.
RE & Pwn Format String Vulnerabilities Explained: From %p Leaks to Arbitrary Write
A practical walkthrough of format string bugs: leaking memory with %p, writing with %n, and pivoting to GOT overwrite.
RE & Pwn Heap Exploitation: Use-After-Free and tcache Poisoning in glibc
A practical walkthrough of UAF and tcache poisoning in glibc malloc, with PoC, gdb commands, and blue-team defenses.
RE & Pwn GDB with pwndbg and GEF: A Practical Exploit-Dev Workflow
A hands-on exploit-dev workflow with GDB plus pwndbg/GEF: breakpoints, telescope, vmmap, heap inspection, and pattern search.
RE & Pwn Writing Exploits with pwntools: From cyclic to ROP and shellcode
A practical guide to building Linux binary exploits with pwntools: cyclic offsets, ELF parsing, p64, ROP, and shellcraft.
Malware & C2 Building a Malware Analysis Lab with REMnux and FLARE-VM
A practical guide to building an isolated REMnux + FLARE-VM lab with snapshots, INetSim, and FakeNet for safe malware analysis.
Malware & C2 Static Analysis of Windows PE Files: Headers, Imports, Strings, and capa
A practical walkthrough of statically triaging Windows PE files using pestudio, capa, and the CLI — plus blue-team detection.