jaalso@kali:~$ whoami

Breaking into offensive & defensive security

Cyber Security Specialist · Jaime · Zürich, CH

Eight years in IT infrastructure (banking & enterprise), now transitioning into offensive and defensive security. This is where I publish lab write-ups, CTF solutions, and notes — the honest version, with tutorials credited where followed.

3 write-ups 15 labs 6 repos 1 NCSC.ch acknowledgment
CSP · completed CSS EFA · in progress CEH · in progress
// cat latest.log
2026-06 · real-world

Windows Telemetry — What Microsoft Sees from a Personal Host

I wanted a concrete answer to a question most people wave away: what does my own Windows machine actually send to Microsoft, without me asking it to? Not the marketing answer — the DNS answer. So I...

FEATURED
2026-05 · real-world

Booking.com Storm-1865 Phishing Triage

A relative in Switzerland received three WhatsApp messages — French, German, and English — impersonating their hotel’s reservation team and demanding they “verify” a booking through a link. Using a...

2026-04 · real-world

BrowserGate — Independent Verification of LinkedIn Browser Fingerprinting

When the “BrowserGate” disclosure broke in April 2026 — claiming LinkedIn’s site silently fingerprints visitors’ browsers, down to their installed extensions — I didn’t want to take the headline on...

→ all write-ups & linked repos
// ls labs/

15 hands-on labs across offensive, blue-team, DFIR, SIEM, email security, and web/TLS — each with a 30-second interview pitch, the environment, tools, CVEs, and outcomes. Built and run in isolated VirtualBox environments.

offensive · forensics

SMB Pentest — Full Compromise + Forensic Reconstruction

defensive · siem

SIEM & Endpoint Detection — Wazuh

forensics · dfir

Windows DFIR & SOC Analyst — KAPE Triage

→ browse all 15 labs