lopes.log

where others see logs, I see stories.

Lantana 1: Honeypot as Code

engineering
deception

Engineering decisions behind Lantana, a Honeypot as Code platform.

Jun 23, 2026
Joe Lopes

Adversary Engagement 101

deception

A primer on cyber deception and adversary engagement.

Jun 16, 2026
Joe Lopes

Pragmatic Adversary Engagement Framework

deception
detection

A pragmatic framework for running Adversary Engagement programs.

Jun 10, 2026
Joe Lopes

Review: Intrusion Detection Honeypots

detection
deception

Detection through deception made simple.

Jun 5, 2026
Joe Lopes

SOAR Playbooks Aren’t Scripts

detection
dfir
engineering

Treating SOAR playbooks as pipelines, not scripts.

May 29, 2026
Joe Lopes

Going YOLO With Claude Code

random
engineering

Two days of full-permission Claude Code, and a close call.

May 12, 2026
Joe Lopes

Detection-as-Code, Then What?

detection

Real gains from a Detection-as-Code project.

Apr 8, 2026
Joe Lopes

AI-First Software Development

engineering

Transitioning from ad-hoc scripting to an AI-first development workflow.

Mar 22, 2026
Joe Lopes

Review: Virtual Honeypots

deception

A book review of the 2007 classic ‘Virtual Honeypots.’

Mar 10, 2026
Joe Lopes

High-Fidelity NRD Detections

detection
engineering

Implementing high-fidelity detection rules for Newly Registered Domains (NRDs) in Google SecOps.

Jan 20, 2026
Joe Lopes

Why I Switched to Quarto

random

My journey migrating from Zola to Quarto.

Jan 6, 2026
Joe Lopes

Gap Analysis with MITRE Navigator

intel
detection
engineering

Automate MITRE ATT&CK gap analysis combining Navigator layers.

Dec 10, 2025
Joe Lopes

Auto-Cleaning Data Tables in Chronicle SIEM

logging
engineering
detection

Automate Chronicle SIEM Data Tables cleanup for expired rows.

Nov 19, 2025
Joe Lopes

CISSP Year 5: Reflections

career

The practical impact of the CISSP certification.

Nov 6, 2025
Joe Lopes

Cordyceps: The Making of Rust Ransomware

engineering

An educational Rust ransomware for security research.

Sep 26, 2025
Joe Lopes

Reflections on Using LLMs to Learn Rust

engineering

Using LLMs as a learning tool for programming.

Sep 9, 2025
Joe Lopes

Rust for Security Engineers

engineering

Rust language from a security engineer’s perspective.

Sep 3, 2025
Joe Lopes

Mapping Detection Rules to MITRE ATT&CK

detection

A guide to map detection rules to MITRE ATT&CK.

Jul 9, 2025
Joe Lopes

Engineering Detection Rules

detection
engineering

Engineer threat detection rules: design, document, then code.

Jun 20, 2025
Joe Lopes

Five-Year Blog Anniversary

random

Reflections on blogging, ownership, and growth.

Apr 27, 2025
Joe Lopes

Review: Automating Security Detection Engineering

detection
engineering

Review of Automating Security Detection Engineering book.

Mar 27, 2025
Joe Lopes

Review: A Bug Hunter’s Diary

career
intel
hardening

A deep dive into bug hunting with practical lessons.

Feb 21, 2025
Joe Lopes

Review: Git for Teams

career
engineering

Best practices and workflow tips from Git for Teams.

Jan 31, 2025
Joe Lopes

To Detect or Not to Detect

detection
dfir

Guidelines for evaluating effective SOC detections.

Dec 31, 2024
Joe Lopes

Towards Actionable Detection

detection
dfir

Actionable detection for relevant and contextual alerts.

Dec 18, 2024
Joe Lopes

Review: The Missing Readme

career
engineering

A guide to modern software engineering and career development.

Dec 5, 2024
Joe Lopes

Review: Countdown to Zero Day

intel

Stuxnet and the launch of the world’s first digital weapon.

Oct 4, 2024
Joe Lopes

Project Nebula: Debriefing

detection
logging
engineering

Final thoughts and improvements for the Nebula detection lab.

Sep 25, 2024
Joe Lopes

Project Nebula: Detecting with Elastic

detection
logging
engineering

Elastic Stack deployment for log monitoring.

Sep 23, 2024
Joe Lopes

Project Nebula: Detecting with Wazuh

detection
logging
engineering

Setting up Wazuh for log collection and detection rules.

Sep 20, 2024
Joe Lopes

Project Nebula: Build a Simple Detection Lab

detection
engineering

Easy guide to setting up a simple detection engineering lab.

Sep 18, 2024
Joe Lopes

Review: Practical Threat Detection Engineering

detection
dfir
intel

Review of Practical Threat Detection Engineering book.

Jul 26, 2024
Joe Lopes

Auto-Cleaning Lists in Chronicle SIEM

logging
engineering
detection

Automate Chronicle SIEM list cleanup for expired items.

Jul 18, 2024
Joe Lopes

Endpoint Security Reflections feat. EDR

detection

Comparing EDR with alternative endpoint solutions.

Jul 8, 2024
Joe Lopes

Integrating MISP with Chronicle SIEM

detection
intel
engineering

Integrate CTI and CSIRT automatically and efficiently.

Jun 26, 2024
Joe Lopes

Debunking Threat Detection Myths

detection

Debunking threat detection myths for improved SecOps.

May 14, 2024
Joe Lopes

How to Sign Commits in Git(Hub)

engineering

Use cryptography to secure Git commits and boost reliability.

May 13, 2024
Joe Lopes

Portfolio Tracker v4

random

Version 4 of my portfolio tracker spreadsheet.

May 8, 2024
Joe Lopes

Improving SecOps Beyond Tuning Analytics

dfir
detection

Improving SecOps through alert tuning, contextualization, and automation.

Mar 14, 2024
Joe Lopes

Review: The Cuckoo’s Egg

dfir
detection
intel

A 1980s Infosec thriller with groundbreaking investigations.

Mar 13, 2024
Joe Lopes

The Threat Detection Fundamental Dilemma

detection
dfir

Exploring the precision vs. recall dilemma in threat detection.

Mar 8, 2024
Joe Lopes

A Little Hardening with Burp Suite

engineering
hardening

How I used Burp to improve this blog’s security.

Feb 23, 2024
Joe Lopes

MITRE ATT&CK 101: Bridging the Gap

detection
intel

Guide to MITRE ATT&CK with history and context for better usage.

Jan 12, 2024
Joe Lopes

Testing The Logfile Navigator (lnav)

dfir

Log analysis with lnav: challenges, insights, and tips.

Dec 15, 2023
Joe Lopes

Getting Real About MITRE ATT&CK

detection
intel

Understanding MITRE ATT&CK and using it in your favor.

Dec 14, 2023
Joe Lopes

Insights into Effective SIEM Deployment

logging
detection
dfir
engineering

Strategies and tips for successful SIEM deployment.

Nov 29, 2023
Joe Lopes

Mastering your Performance

career

Tools, rituals, and reflections for growth in Infosec.

Nov 28, 2023
Joe Lopes

Understanding Severity vs. Priority

dfir
detection

Find the best settings for consistent detection alerts.

Nov 23, 2023
Joe Lopes

Productivity Unleashed

career

Boost productivity with tools and a streamlined process.

Nov 14, 2023
Joe Lopes

Review: Intelligence-Driven Incident Response

dfir
detection
intel

How integrating CTI enhances Threat Detection and CSIRT.

Oct 17, 2023
Joe Lopes

Chronicle SIEM: Insights and Challenges

logging
detection

Chronicle features and challenges in Threat Detection.

Sep 23, 2023
Joe Lopes

Portfolio Tracker: Mastering your Finances

random

Better portfolio management with this powerful spreadsheet.

Aug 23, 2023
Joe Lopes

Handling Floating Point Precision in Spreadsheets

random

Handling floating point precision in spreadsheets effectively.

Jun 30, 2023
Joe Lopes

Effective Detection Rules for Net and Port Scans

detection

Effective network and port scan detection.

May 30, 2023
Joe Lopes

Hardening Email with DKIM, SPF, DMARC

hardening

Learn how to protect your mailboxes from cyber threats.

May 24, 2023
Joe Lopes

Using AI and GPT for SEO Advice

engineering

Using OpenAI’s GPT-3 to generate SEO-friendly post metadata.

Mar 17, 2023
Joe Lopes

Export and Decode GAuth 2FA Accounts

hardening

How to export and decode GAuth 2FA.

Jan 18, 2023
Joe Lopes

Using AWS Secrets Manager in Scripts

engineering
hardening

Learn to authenticate in tools seamlessly.

Jan 5, 2023
Joe Lopes

Getting Started with CloudFlare for Web Protection

hardening
engineering

Use CloudFlare’s free plan for better site security.

Jan 2, 2023
Joe Lopes

Updating Signed Documents with GPG

engineering

Update GPG signed docs: import keys, patch files in batch.

Jan 2, 2023
Joe Lopes

Getting Cryptocurrency Prices in Google Sheets

engineering

Retrieve crypto prices in Sheets using a 3rd party service.

Dec 26, 2022
Joe Lopes

Automating Incident Response

dfir
engineering

Tackling log centralization, SIEM, and IR automation.

Oct 25, 2022
Joe Lopes

The Importance of Logging Strategy

logging

Streamlined planning and retention practices for better logging.

Oct 9, 2022
Joe Lopes

Friction Between Red Teams and Incident Response

dfir

Reducing friction in Red Team cybersecurity exercises.

Oct 4, 2022
Joe Lopes

My Minimalistic Approach to Mac System Setup

random

Set up your Mac with fewer apps for a simpler system.

Sep 30, 2022
Joe Lopes

Query Security Services for IP Reputation

engineering
dfir

Query three security services for IP reputation in one script.

Sep 6, 2022
Joe Lopes

Changing the Zola Theme

random

How to change your Zola blog theme without breaking the site.

Aug 29, 2022
Joe Lopes

Creating a Hardened Testing Environment

engineering
hardening

Install and secure Arch Linux for safer network tests.

Nov 4, 2021
Joe Lopes

Set Static IP Address in Arch Linux

random

Set a static IP in Arch Linux without DHCP support.

Oct 27, 2021
Joe Lopes

Recovering Arch Linux from a PAM Issue

random

How to recover Arch with a misconfigured PAM configuration.

Oct 26, 2021
Joe Lopes

Secure and Easy Password and MFA Management

hardening

Enhance passwords and MFA for better security and usability.

Oct 5, 2021
Joe Lopes

Calculating and Decomposing Syslog Priority

logging

Calculate and decompose Syslog message priority.

Sep 2, 2021
Joe Lopes

Real-time Log Forwarding with Python and Syslog

engineering
logging

Create a smart log forwarding script using Python and Syslog.

Sep 1, 2021
Joe Lopes

AWS Certified Security - Specialty Review

career

The materials and strategy I used to get this certification.

Aug 24, 2021
Joe Lopes

Logging Python Messages to Syslog in macOS

engineering
logging

Send log messages from Python to Syslog in macOS.

Aug 17, 2021
Joe Lopes

My Journey to CISSP Certification

career

My experience getting the CISSP certification.

Nov 5, 2020
Joe Lopes

Installing Nerd Fonts on Arch Linux

random

Learn how to install and use Nerd Fonts.

Jul 27, 2020
Joe Lopes

Arch Linux Workstation Setup

random

Setup your Arch workstation with GUI and apps.

Jul 15, 2020
Joe Lopes

Linux Hardening with CIS Controls

hardening

Applying CIS controls to secure Arch Linux.

Jul 8, 2020
Joe Lopes

Arch Linux Hardened Installation Guide

hardening

Step-by-step guide for a hardened Arch Linux install.

Jul 7, 2020
Joe Lopes

Blogging and the Freedom of the Web

random

Blogging remains a valuable platform for tech content.

Jun 9, 2020
Joe Lopes

Automating Network Management with NetBox Scanner

engineering

Streamlining network management with IPAM and a network scanner.

May 31, 2020
Joe Lopes

Verme Cervejeiro

random

Uma crônica sobre fazer cerveja artesanal no Brasil.

May 19, 2020
Joe Lopes

Trabalhando com Submódulos no Git

engineering

Gerencie submódulos no Git: comandos e referência.

May 12, 2020
Joe Lopes

Criando um Tema para o Zola

random

Aprenda a criar um tema para Zola e contribua com a comunidade.

May 11, 2020
Joe Lopes

Certificação CompTIA Security+

career

Preparação e dicas para a certificação Security+.

May 5, 2020
Joe Lopes

Certificações em Seleção de Pessoal

career

Importância das certificações na seleção de pessoal em TI.

Apr 30, 2020
Joe Lopes

Aprendendo a Criar Sites Estáticos com Zola

random

Zola para criar e manter sites seguros e de alta performance.

Apr 27, 2020
Joe Lopes
No matching items