Posts

Unsupervised Machine Learning for Detection Engineering

Image
Hola everyone, I´m Diego from diegowritesa.blog Before I start -  since my last post got quite a lot of traction and some people tried claiming it as their own work. You can find me on L inkedin & T witter  - you can imagine these blogs take quite a bit of time to make, and is all simply to share some knowledge, any comments, requests, connections are much appreciated everyone! Love you all! ❤️ As last time, do not worry, I will leave a link to my  GitHub  at the very end under "References & More Useful Information" so you can copy everything if you want. If you are asking yourself, but Diego, why are you not posting about AI, genAI, AgenticAI, etc.. relaaaax, first things first, today we will be discussing some basics of Machine Learning, and we will continue on more advanced AI topics in future entries. Today’s post will serve as an introduction to key tools and their applications in cybersecurity use cases. If you’re already familiar with ML/AI conce...
Post a Comment
Read more

Detecting C2-Jittered Beacons with Frequency Analysis

Image
 Hola everyone, Today we are going to learn about Frequency Analysis using Fourier, applied to Cyber Security. This tool will allow us to find patterns within our dataset, in a much easier way than doing it in the time domain.** As last time, do not worry, I will leave a link to my  GitHub  at the very end under "References & More Useful Information" so you can copy everything if you want. ** Disclaimer !! Remember that the problem you are trying to solve might be slightly different than the one I am presenting, and maybe time-domain tools work best for your case. Do your own analysis before copy-pasting the code in the GitHub for optimal results. ----------------------------------------------------------------------------------------------------------------------------- Executive Summary Frequency Analysis using Fourier for Detection Engineering & Threat Hunting. Detecting C2 Beacons with and without Jitter, a technical analysis. ---------------------------------...
Post a Comment
Read more

Web Scraping for Cyber Security

Image
 Hola everyone, Today we are going to learn about Data Scraping and Automatically collecting Cyber Threat Intelligence (CTI) feeds to programmatically extract and import IOCs in different SIEMs. Do not worry, I will leave a link to my GitHub at the very end under "References & More Useful Information" so you can copy everything if you want. ** Disclaimer !! Remember that scraping without control can have impact on the website you are trying to ping, be considerate with your scraping, read the terms and conditions to see if it´s allowed, and try not to DDoS the server or website which you are gathering information from. ----------------------------------------------------------------------------------------------------------------------------- Executive Summary Data Scraping using Beautiful Soup Python Library to programmatically retrieve CTI feeds and ingest them into different SIEMs, for Threat Hunting, Detection Engineering, Automation. ---------------------------------...
2 comments
Read more

Introduction

Image
So.. why am I writing a blog now?  Well, I feel like I’ve reached a point in my career where my expertise, research, and ideas could really benefit others, and since I’ve always loved sharing knowledge, this blog is the perfect way to do just that! What are you going to be posting about? I’ll be posting about various cybersecurity topics: Cyber Security Forensics Incident Response Malware Machine Learning Cloud "Artificial Intelligence" (AI) SOC - Security Operations Center Budget Cost Optmization SIEMs Detection Engineering Logging Architectures & Pipelines I’ll mix in some #technical posts with #business -focused insights to engage both tech-savvy and business-centric professionals. I plan to include plenty of visuals and examples to make things clearer, and each post will kick off with an Executive Summary to highlight the main takeaways. So who am I? I´m Diego, nice to meet you. I´ve been in the Cyber Security world for the past 6-7 years, I am a Telecommunication...
1 comment
Read more