I recommend reading Blue Team Level 2 (BTL2) – Review Part 1 to get some additional background on my journey with this certification. Why I took this certification. I took this certification not to move up the security ranks or get a new career. It was for me to level up and to be able…
Category: Training
BSides Buffalo 2022: The Art of Analysis: How Analyzing Art Helps Us Be Better Analysts
I recently did a talk at BSides Buffalo and wanted to share the link for the talk and the slides if anybody is interested in following along. Unfortunately, the video didn’t capture the slides as well as I had hoped, and the visual aspect of the talk is critical. Slideshttps://www.domedion.com/wp-content/uploads/2022/06/art.pptx I’ve started a series of…
Tuning Done Right
In a previous blog post, I described tuning as the key to reducing alert fatigue, not SOAR. You can find that article here Alert Fatigue. Tuning isn’t easy, and this post will only talk about half of the process. When you look up the word tuning, you will find the definition of “to adjust for…
eCPPT Review – The Good, The Bad And The Ugly
eCPPT stands for eLearnSecurity Certified Professional Penetration Tester. Now, I’m very much a blue teamer, but the purpose for me to pursue this certification was to learn attackers’ tactics and techniques. I wanted to be able to more quickly identify an attacker in an environment and also understand the attacker’s next step. I didn’t pursue…
First Rule Of Security Club Is You Don’t Talk About Security Club
Training: it’s one of the best investments for yourself or a team. Even though it’s super important, I often see training not making that big of an impact on employees. They might get that new certification or complete a course, but have they changed? Has the TEAM grown? In some cases they have, but not…
Just Say No To SANS
In a previous article I talked about all the money that I’ve invested into myself over the years. I have a saying, “I won’t ask a company to pay for something that I’m not willing to pay for myself,” and one of the things I would never ask a company to pay for is a…
Blue Team Level 2 (BTL2) – Review Part 1
3/21/22 This review will be an ongoing, living review. As I write this review, the platform has jumped to a new interface. Two labs are still “coming soon,” and the estimated date for the exam to be available is at the end of March. I’m doing a “living” review because Blue Team Level 2 has…
Practical Malware Analysis & Triage – Review
I wanted to do a quick review on this course to give some initial thoughts. I want to say I’m only familiar with Matt Kiely aka HuskyHacks due to his blog for the eCPPT. https://huskyhacks.dev/2020/04/24/elsptp/. I enjoyed his other blog posts and ended up following him on twitter https://twitter.com/HuskyHacksMK which is how I became aware…
A Puzzle Challenges The Player To Get From A Problem To A Solution
When working with alerts, I notice that analysts sometimes have the immediate reaction to reach out to somebody else to have them answer it. I’ll hear, “Well, I’ll ask this person about that system” or “This person would be a good resource to ask about that traffic.” There’s a time and place for such questions,…
Fixed: How to Perfect the Fine Art of Problem Solving – Book Review
With this book, I didn’t expect it to be as relatable for an analyst but maybe more geared towards engineering, architect, or even manager role. So my expectations weren’t for this to be like her previous book Visual Intelligence: Sharpen Your Perception, Change Your Life, where I could directly relate most of it for an…
Making A SMART New Year Goal
Many people use the New Year to set new goals. I personally set goals for myself every year. Though I didn’t hit all of them in 2021, I did accomplish a few things, like completing my eCPPT and blogging monthly. This year I’ve been more conscious of others’ goals though. I want to see how…
Best Security Investment
I recently was watching a video about George St. Pierre. https://www.youtube.com/watch?v=CpfGk8ms3aY He was an active UFC fighter back around 2007. He held the UFC middleweight championship belt for several years during that time. In the video he talked about how he spent his first million. At the beginning it was very economical, like paying off…