https://agamiel.github.io/My personal cybersecurity blog – sharing CTF writeups, SOC notes. 2025-12-05T21:06:33+02:00 Abdelrahman Gamiel https://agamiel.github.io/ Jekyll © 2025 Abdelrahman Gamiel /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png 2025-10-12T00:00:00+03:00 2025-10-12T00:00:00+03:00 https://agamiel.github.io/posts/we-innovation-Tasks/ Abdelrahman Gamiel

بِسْمِ اللَّهِ الرَّحْمَنِ الرَّحِيمِ اللَّهُمَّ انْفَعْنِي بِمَا عَلَّمْتَنِي وَعَلِّمْنِي مَا يَنْفَعُنِي وَزِدْنِي عِلْمًا Hello Every one! We Innovate is a 5-week internship in collaboration with ZeroSploit MEA, hosted by the Information Technology Institute (ITI). I gained hands-on experience in: Network Forensics & PCAP Analysis Web & Network Security Labs (WAF, IDS, ...

2025-10-10T00:00:00+03:00 2025-10-10T00:00:00+03:00 https://agamiel.github.io/posts/waf-home-lab/ Abdelrahman Gamiel

Lab Introduction: what is web server? A web server is a system that uses both software and hardware to deliver web content, such as web pages, images, and videos, to users’ browsers. The hardware is a physical computer that stores website files and connects to the internet, while the software is the program that listens for and responds to requests from clients (like browsers) using the HTTP pr...

2025-10-10T00:00:00+03:00 2025-10-10T00:00:00+03:00 https://agamiel.github.io/posts/task-2-pcap-analysis/ Abdelrahman Gamiel

Task Details : also you can visit the original task from : PSexec hunt lab on cyber defenders before starting at soliton we need to explain what is the PSEXEC: PsExec is a lightweight command-line tool developed by Microsoft Sysinternals that allows for the execution of programs on remote systems, acting as a telnet replacement without requiring manual client installation on the remote mach...

2025-10-10T00:00:00+03:00 2025-10-10T00:00:00+03:00 https://agamiel.github.io/posts/task-1-pcap-analysis/ Abdelrahman Gamiel

Task Details : also you can visit the original task from : Malware Traffic Analysis : — lets dive into analysis and solution Question 1: what is the IP address of the infected windows client? Answer is: 10.1.17.215 We can verify that by checking our network that ranged in 10.1.17.0-255, so we can make check and scan which IP that make the most packets we can find that in (statistics -> e...

2025-10-10T00:00:00+03:00 2025-10-10T00:00:00+03:00 https://agamiel.github.io/posts/Splunk-Task/ Abdelrahman Gamiel

What is Splunk? Splunk is a platform used to search, monitor, and analyze machine-generated data to detect threats, manage security incidents, and gain operational visibility across an organization’s IT infrastructure. It collects data from various sources, such as logs from servers, applications, and networks, and transforms it into searchable, actionable insights through dashboards, alerts, a...