Find masquerading processes using procfs.
Install evil-winrm on Ubuntu 20.04
A quick overview of triage data acquisition in the context of attack/defend CTFs.
Some notes and links related to the Volatility Framework
Learn how to use dpkg, rpm, and other related tools to find malware on your systems.
I was victimized by gscript at a CTF. Here is how I dealt with it.
Harden bash shells against pesky red teamers.
Read about how one may take advantage of ipv6 neglect.