SANS660 Advance Pen Testing - once again I am not a massive SANS fan but the modules for Network Attacks and Fuzzing were really good. This wouldn’t be my recommendation for exploit dev (I would say try exp301 or Corelan Exploit Development for Windows)

CodeMachine Windows Kernel Internals - Geez this was a firehose of information, but a lot of awesome insights. Really recommend this course for anyone who wants to go deep on the Windows Kernel.

SANS670 Red Team Tool Development - awesome course, I normally try and stay away from SANS courses as I think they are overpriced for the content, but this course was genuinely really enjoyable and a lot of takeaway. Make sure do John’s Intro for C for Windows Dev series, really good primer.

@tzkuat thinking of combining snort and ossec and tying the alert system to telegram or slack

@tzkuat I’ve not used Waxuh before, I’ll check it out

@blit32 it’s an interesting topic, I have a spare z600 workstation just laying around so I am configuring that with all of my setup now.