Last week I shared my latest project, Cordyceps ☣︎, a proof-of-concept ransomware written in Rust.
While it's well documented, I’ve written a blog post showing some crates and techniques used in its development. Follow me. 👾
🔗 lopes.id/2025-cordyc...
#rustlang #cybersecurity #cryptography
Wrapped up my final Rust learning challenge: an educational ransomware. It covers core systems topics like CLI parsing, file traversal, error handling, and networking, all in an Infosec context.
Meet Cordyceps ☣︎, open-source and built to teach.
🔗
While studying Rust 🦀, I realized my learning process has shifted completely, with LLMs acting as my new peer. 🤖
I've shared my reflection in a new blog post, comparing my experience with languages like C and Python to my current journey with AI. Follow me! 🪞
🔗
After a couple of months of diving deep into Rust 🦀, I'm sharing my thoughts.
My new blog post presents the language from a security engineer's perspective, with practical examples on core concepts and why they matter for Infosec. Follow my journey. 🦀
🔗
Struggling to map detection rules to MITRE ATT&CK? I dropped a new blog post diving into this often-overlooked part of rule documentation. I share a simple, repeatable process to make mapping easier, more precise, and consistent. Grab a coffee and check it out! ☕
🔗 lopes.id/2025-mappin...
Detection request landed? Stop coding! 🐎 Apply SWE principles for repeatable, high-quality rules from day one. Grab a coffee and follow me! ☕︎👇
🔗 lopes.id/2025-engine...
#detectionengineering #threatdetection #softwareengineering
You don’t always need to build detection rules from scratch. Reusing solid logic and leveraging AI can save time and effort. No need to reinvent the wheel--optimize it. 💡👇🏻
🔗 rulehound.com/rules
These technologies accelerate learning, but they also make it easier to lose touch with people. The process becomes faster and less stressful, but it’s up to us to make an effort to connect with others and make it more enjoyable.
When I first learned programming with #Pascal, I relied on books and colleagues. The last time I learned a programming language, Python, I turned to Google, #StackOverflow, and GitHub. Recently, when I decided to learn #Golang, I instinctively opened a chat with an #LLM alongside a book.
Why keep a blog in 2025? 🤔 In an era of streamers and AI-made content, blogging might seem outdated. This month, my blog turned 5, 🥳 and I’m sharing some thoughts on why it still matters. Wanna know more? Grab a coffee ☕︎ and 👇
🔗 lopes.id/2025-five-y...
#blog #blogging #dev #reflection
blindly following convention. The key is ensuring these debates lead to actionable outcomes rather than becoming blockers. ✌🏻
6/6
Each team must define its own criteria based on its environment and risk appetite--possibly involving other dimensions, like impact. 💡 And while these discussions might feel like unnecessary overthinking, they're actually a sign of a strong team--one that questions assumptions rather than
5/6
But if we follow that logic, wouldn't a user-report of a phishing email (where nothing was clicked) also be a false positive? No impact, no incident. ⚠️
I don't have a definitive answer yet, but I've come to believe that incident classification carries an inherent level of subjectivity.
4/6
But when you dig deeper, subjectivity emerges. For example, if a known adversary-controlled IP scans your network (using fresh, internally curated IOCs with an appropriate TTL) is that an incident? 👀 Many would dismiss it as a false positive, arguing that there's no impact.
3/6
The reality, however, was that alongside this exciting work, I found myself engaged in philosophical debates over topics that less-experienced teams might take for granted--like the fundamental question: What is an incident? 🤔
At first glance, the answer seems obvious.
2/6
When I joined a more skilled team filled with talented people, I expected to focus solely on solving complex problems and delivering cutting-edge technology.
1/6
Just finished reading another book, this time on automation and detection engineering. I’m sharing my review here, and as a bonus, I’ve also uncovered a bug in a YARA-L rule while reading. Check it out! ☕︎ 🔍 🕵️
🔗 lopes.id/2025-book-a...
#detection #engineering #automation #dev
This excellent article by Scott Chacon, one of the founders of GitHub, shares some fantastic Git configurations. Some, like help.autocorrect and push.autoSetupRemote, are true lifesavers! A must-read for Git users. ☕︎
🔗 blog.gitbutler.com/h...
#git #dev #config #engineering
This week, I dove into Elastic's Detection Engineering Behavior Maturity Model (DEBMM), and the insights are incredible! It's a structured approach for detection teams to mature, ensuring that rulesets are developed, managed, and improved effectively! 100% recommended! ⭐
🔗 www.elastic.co/secur...
Another book review! 📕 This time, with an Infosec classic: A Bug Hunter's Diary. 🔍 In this post, I share some of the takeaways and insights I gained from this gem. ☕︎
🔗 lopes.id/2025-book-b...
#book #vulnerability #research #infosec
Anvilogic's report on perspectives from the Detection Engineering trenches is a must-read for both teams seeking direction and newcomers to the field. Grab a coffee and enjoy the reading! ☕︎ 🗞️
🔗 www.anvilogic.com/re...
I found a lexical analyzer I wrote 20 years ago in C. 👴 I used to feel ashamed of its flaws, but now I realize they show how much I’ve learned. Sharing the link, but as a security engineer, here’s my comment on the README: "Buffer overflow risk, like many C programs. 😅"
🔗 github.com/lopes/vol...
Closing out January by reviewing the first tech book I’ve read in 2025: Git for Teams 📚. If you work with Git but haven’t taken the time to dive into best practices, this one’s for you! 💻✨ Check out my review!
🔗 lopes.id/2025-book-gi...
Never realized that `cp -r *` would not copy `.hidden` folders. To accomplish that, you must use `cp -r .` Live and learn.
#unix #macos #linux #zsh #bash #shell #cli
One afternoon using Zed was enough for me to decide to replace VScode. Written in Rust and with a reasonable setup out of the box, this project deserves more attention. zed.dev
Been struggling with arrayformula and if/and in Google Sheets trying to find a mistake preventing my formula from running. Then I find this tip stating that the logical and in if within an arrayformula is "*". Thank you Google /s
stackoverflow.com/questions/70...
The beauty of using themes as submodules in Zola comes when you update your theme with a neat `git submodule update --remote`. 👌
I've just finished reading "The Cuckoo's Egg" and posted a review in my blog. But while I was searching any video to contextualized it, I stumbled upon this one that perfectly shows Cliff's energy and eagerness to learn.
www.youtube.com/watch?v=9yUZ...
True! I learned about half timezones in the past week! 😱
I truly miss Pearl Jam's "Live at Benaroya Hall" album on Spotify. IMO, that's the band's genuine unplugged experience. A masterpiece.