Social Media


  • Understanding The Zeek Spicy Wireguard VPN Protocol Analyzer

    In this presentation I walk through every line of code in the open source Zeek Spicy Wireguard VPN protocol analyzer. It’s more fun than it sounds, honestly. Spicy documentation: Slides:

  • eCrimeBytes S 1, Ep 4: The Twitter Hack

    July 15, 2020.   Some say it was one of the biggest Twitter hacks.  This day, several high profile Twitter accounts were in the hands of criminals.  The criminals then used the stolen accounts to trick ordinary users out of their Bitcoins, such as: Elon Musk:  I’m feeling generous because…

  • eCrimeBytes S 1, Ep 3: Violence As A Service With ”PatTheBat”

    This episode we take a look at a shooting at one PA residence and a firebombing at another.  Are these two crimes related?  We will meet an enforcer who named himself “PatTheBat” and discuss how his sloppy behavior plus love for Mad Dog 20/20 brought him to the attention of…

  • Anatomy Of A Zeek Spicy Protocol Analyzer

    This video will walk through all the important parts of a Zeek Spicy protocol analyzer.

  • BACNet Basics With Zeek

    We look at what BACNet traffic looks like in Zeek, along the way explaining some BACNet basics.

  • Easily Run Zeek and Spicy in a Docker Container

    Here you will learn to run Zeek and Spicy in a Docker container. I do this often to test my code on different versions of Zeek without having to fully install each version.

  • eCrimeBytes S 1, Ep 2: Swatting Gets Deadly

    This week we take a look at the damage left behind by a serial swatter who wanted notable Instagram and Twitter usernames so badly he would try anything to get them. While all victims suffered at his hands, one victim was extremely unlucky and paid with his life. Sit back…

  • eCrimeBytes S 1, Ep 1: The Community

    We will look at a case where nine young men, calling themselves “The Community”, conspired to steal millions of dollars of cryptocurrency. The Community took control of their victims’ mobile phone numbers through SIM swapping. They might have gotten away with it had an unlikely informant not brought down the…

  • Create a Zeek Spicy Analyzer from a Template

    Learn how to create a Zeek Spicy protocol analyzer from a template using “zkg create”.

  • Welcome!

    This is my first post. I hope there will be many more to come. Feel free to visit any of my social media links in the header.