Blog

Technical writing on pentesting, SOC engineering, and security operations.

1tsprune

Custom Wazuh Rules & Decoders

Hands-on guide to custom Wazuh rules and decoders using Bayu Sangkaya's open-source repository.

1tsprune

Wazuh & Firewalls

Pipe Palo Alto, FortiGate, pfSense, and Trend Micro logs into Wazuh with decoders and correlation rules.

1tsprune

Open-Source SOC Stack

Replaced a commercial SIEM with a complete open-source SOC stack, inspired by Bayu Sangkaya's case study.

1tsprune

Pentesting Government Sites

Five government VAPT engagements: vulnerability patterns, SQLi to shell, and reporting to officials.

1tsprune

Automating XSS Discovery

Pipeline: Dursgo crawls, Dalfox fuzzes, Nuclei scans. Custom templates, blind XSS, shell script.

1tsprune

Wazuh SIEM Install Guide

Deploy Wazuh SIEM on Ubuntu from scratch with the official installer. Production-ready in under an hour.

1tsprune

CEH vs ECIH vs CND

Honest comparison of three EC-Council certifications based on firsthand experience.

1tsprune

Indonesia Cybersec 2026

PDP Law enforcement, BSSN mandates, ransomware threats, and the workforce gap in Indonesia.

1tsprune

Malware Analysis & IOCs

Runtime and dynamic analysis techniques for extracting IOCs from live malware samples.