London, UK -  Cyber security professional specialising in incident response and forensics, detection engineering, threat hunting, and SOC development. Former business and technology journalist

Interests

  • Cyber security and tech
  • Coding (Python, JS, PS, C#)
  • Psychology, philosophy
  • Running and exercise
  • Gaming (PC, PS5)
  • Sport (F1, football)
  • Music (guitar)

Currently thinking about

Automation and scripting
I've recently been tinkering with APIs and writing scripts (and a Chrome extension) to automate common SOC processes. Check out my blog post on how this fits into the big picture in a modular SOC

Recent blog posts

Centralisation, repeatability, and automation in a modular SOC
Cyber security sometimes means learning things backwards
Using winget to automate software deployment to a new laptop
Investigating Explorer's temporary ZIP folders and retrieving files
Parsing login sessions from the Windows event log with PowerShell
Using Tkinter to build simple GUIs for Python apps
Linux .bash_history: Basics, behaviours, and forensics
SANS Holiday Hack Challenge 2021: Slot machine walkthrough
SANS Holiday Hack Challenge 2021: Yara rule analysis walkthrough
Backutil development: Implementing multiprocessing in Python