So today we had the Threat Intelligence assessment and I was actually surprised to see that I had no wrong answers.
After that we were finally introduced to one of the last materials – Python! I tried to learn a bit of python before the bootcamp but I didn’t get very far so even the basics that we learned today were very valuable. I think I’m still grasping the concept of functions and how they work. So, some of the code can get repetitive, and this is where functions come in. A function is a block of code that can be called at different places in your program.
Then after the lab I decided to start another one which was optional: Python for Pentesters. I only did half of it because I decided to do some revision with the usual gang.
We decided to revise on malware analysis. And thank god we did because I couldn’t remember a lot of things. I had to revise pe-tree and where to find things like: the architecture of the binary, which dll file imports some function, and other things. I also had to revise capa but that one wasn’t hard. It’s a pretty straightforward command.
Then after that, why not some Splunk revision? I had forgotten how hard this lab was: Splunk 2. If had remembered I wouldn’t have done it again. This room messes with your head. I think It’s probably the hardest Splunk room on TryHackMe. But we still did most of it (with some external help at times).
I’m pretty happy with today. I learned new things and got to revise on malware analysis and Splunk. This next few days I should probably focus more on revision like I did today.
