(Writeup) LetsDefend Challenge - Http Basic Auth.
Analyzing a PCAP file to identify HTTP GET requests, enumerate server and client details from HTTP headers, and decode Basic Authentication credentials using Wireshark and CyberChef.
CyberChef
(Writeup) LetsDefend EventID: 115 - [SOC165 - Possible SQL Injection Payload Detected]
Investigating a SQL injection alert after repeated crafted payloads targeted a web server, decoding and validating the requests through log analysis, reviewing source IP reputation across multiple threat intelligence sources, and confirming the attack was unsuccessful based on server responses and endpoint verification.