Holiday Hack Challenge - 2023
Hands-on cybersecurity challenges created by SANS and sponsored by Google, Microsoft, and Amazon. Topics included: Cloud Security, Web Application Security, Threat Hunting, Log Analysis and more.
Below are each challenge that I completed and some of the primary tools/skills involved in each. Click on the title for more information about each challenge and what I did to solve it.
Tools/Skills: KQL, Incident Investigation, Log Analysis, Decoding Base64-Encoded Powershell Commands
Tools/Skills: Azure CLI, Azure Cloud Environment
Tools/Skills: Linux CLI - ls, pwd, cat, rm, cd, chmod, grep, find, history, ps aux, netstat, curl, kill
Tools/Skills: Linux CLI, Command Injection, Privilege Escalation
Tools/Skills: CLI, Hashcat, Hash Types
Tools/Skills: Identifying Phishing Emails, DMARC, DKIM-Signature
Tools/Skills: Burp Suite - proxy, intercept, logger, intruder, cluster bomb, payloads, HTTP traffic
Tools/Skills: Certificates, SSH, Azure Instance Metadata Service, Python, Burp Suite, Source Code
Tools/Skills: Browser's Developer Tools, HTML, JavaScript, Runtime Modifications
Tools/Skills: JSON Tokens, Browser's Developer Tools, HTML, JavaScript, Runtime Modifications, Burp Suite
Tools/Skills: Designing & documenting a repeatable solution to a problem; how to crack a luggage lock in the physical world
Tools/Skills: Documenting a repeatable solution to a problem; how to crack a rotary lock in the real world
Last updated