Skip to main content

johnbrown.pro

July 11, 2026 - Cybersecurity

SMB Brute Force Detection & Network Telemetry Analysis

Role SOC Analyst / Security Researcher Environment VMware Lab Attack SMB Brute Force Detection Wireshark · Security Onion · Splunk Status Successfully Investigated Simulated an SMB authentication brute force attack against a Windows Server 2019 Active Directory domain controller and correlated reconnaissance, packet-level SMB/NTLM evidence, Security Onion telemetry, and Windows authentication events in Splunk. PROJECT […]

Read More
July 9, 2026 - Cybersecurity

Detecting RDP Brute Force in a Windows Domain Lab

Role SOC Analyst / Security Researcher Environment VMware Lab Attack RDP Brute Force Detection Wireshark · Security Onion · Splunk Status Successfully Investigated Simulated an RDP brute force attack against a Windows Server 2019 domain controller and correlated network, IDS, host, and SIEM evidence using Wireshark, Security Onion, Windows Event Viewer, and Splunk. Project Overview […]

Read More