Hello world! I’ve been away from infosec for a while, but here you are, reading the first post on my new blog! I spent a few years working in software development and hardly had time for any hacking-related activities. Recently, however, I landed a job as an ethical hacker, and I’m enjoying it so much that I find myself doing more and more hacking on the side as well. My job involves both penetration testing and red teaming assignments, and I seem to be enjoying the latter the most.
My experience in software development has become a really useful tool for studying various topics. These days, if I want to truly understand a technique, I force myself to implement it in C, C++, or Rust. You may think you understand a subject, but when you start asking yourself questions to test your knowledge, you might realize your understanding is actually quite vague. I found that a great way to find the right questions to ask is by trying to implement it yourself.
For me and possibly other people in this field, a big part of my knowledge was gathered by participating in hacking competitions which required me to do research into all kinds of different topics. This often meant that I needed to know just enough to solve the puzzle after which I moved on to the next. I’m now at a point where I am extremely motivated to dig in deeper and actually understand. I’ll document my research on this blog, for myself and the rest of the internet to read back. Expect posts mostly about malware development and evasion techniques, but we never know where our hacking adventures lead us.