Deep dives into adversary emulation, threat intelligence, and the philosophy behind building offensive security tools.
APT31 vs Russia - A deep dive into the Chinese state-sponsored campaign targeting Russian IT contractors (2022-2025). Analysis of VtChatter's VirusTotal C2 channel, CloudyLoader's evasion techniques, and the geopolitical implications of allies spying on allies.
As an adversarial engineer, I've spent years studying how threat actors operate. From nation-state APTs to financially motivated groups, understanding their TTPs is only half the battle.