Ludovic COULON
Aspiring DFIR Analyst and experienced CSIRT Analyst, dedicated to investigating and mitigating cybersecurity incidents and protecting organizations from cyber threats.
Featured Posts
Dissecting a ClickFix Campaign: From Fake Booking.com CAPTCHA to a TON-Resolved Node.js RAT
A fake Booking.com CAPTCHA tricks the victim into pasting a BigInt-obfuscated PowerShell one-liner. From there: an AES dropper, the legitimate Node.js runtime as a LOLBin, and a JavaScript RAT that looks up its C2 on the TON blockchain.
Read article- Malware Analysis
Dissecting a Brazilian Multi-Stage VBScript Trojan Dropper
Technical analysis of a multi-stage VBScript malware targeting Portuguese-speaking users, with heavy obfuscation, staged payload delivery via hidden IE COM objects, and Windows Task Scheduler persistence
- Malware Analysis
Create the perfect virtual environment for malware analysis
How to setup mitmproxy and create “undetectable” virtual machines for malware analysis
- Reverse Engineering
Introduction to reverse engineering (Part 2)
Small fun project with a friend that I decided to transform into a small series of articles on my blog.
Recent Posts
- THM
Daily Bugle - TryHackMe
Compromise a Joomla CMS account via SQLi, practise cracking hashes and escalate privileges.
- THM
Brute IT - TryHackMe
Learn how to brute, hash cracking and escalate privileges in this box!
- THM
Attacking Kerberos - TryHackMe
Learn how to abuse the Kerberos Ticket Granting Service inside of a Windows Domain Controller
- THM
Chocolate Factory - TryHackMe
This room was designed so that hackers can revisit the Willy Wonka's Chocolate Factory and meet Oompa Loompa
- XSS
Basic XSS - Google
This room aims towards helping everyone learn about the basics of xss
- THM
Basic Malware RE - TryHackMe
This room aims towards helping everyone learn about the basics of Malware Reverse Engineering