.png)
shkody_kot
Security Operations Analyst
Level 20 132093 / 141259
*Rankings computed based on core modules (127703 pts).
Joined in November, 2023
shkody_kot earned 16 badges
World Domination Nation
This analyst completed the "World Domination Nation" module, investigating a sophisticated cyber attack on WDN Consulting. They used Kusto Query Language (KQL) in an investigation that covered lateral movement, credential dumping, system configuration modifications, and full domain compromise. This exercise reinforced their ability to effectively detect, analyze, and respond to complex cyber threats.
Issued on: Dec 05, 2023
Sunlands ☀️🚀🧑🚀
This analyst investigated a sophisticated cyber attack on the Sunlands Aeronautics and Space Administration (SASA). They demonstrated advanced skills in detecting phishing attacks, analyzing malicious file downloads, and uncovering command and control infrastructure and persistence mechanisms. This exercise showcased their ability to respond to advanced cyber threats using threat actor tactics, techniques, and procedures (TTPs).
Issued on: Dec 12, 2023
KC7 Top 10 (2023)
Awarded to top 10 KC7 players in 2023
Issued on: Jan 02, 2024
Valdorian Times
This analyst investigated an email phishing attack in Valdoria that uncovered a politically motivated influence campaign. Using Kusto Query Language (KQL), they analyzed employee roles, email communications, and computer process events, revealing evidence of data exfiltration and manipulation. This exercise reinforced skill in querying data and understanding data integrity within a cybersecurity context.
Issued on: Jan 22, 2024
Dai Wok Foods
This analyst completed the "Dai Wok Foods" module. They demonstrated skills in detecting phishing attempts, analyzing email logs, and using Passive DNS for domain analysis. This proficiency is vital for countering threat actor tactics and protecting organizational assets.
Issued on: Jan 24, 2024
Balloons Over Iowa
This analyst completed the "Balloons Over Iowa" module, investigating a phishing and ransomware attack. They identified command and control connections, detected data exfiltration, analyzed Mimikatz activity, and observed shadow copy deletions, demonstrating their ability to effectively respond to and analyze cyber threats.
Issued on: Jan 28, 2024
Inside Encryptodera
This analyst investigated an easy-level insider threat scenario by identifying suspicious employee activities, analyzing internal communications, and tracking unauthorized data transfers. They used Kusto Query Language (KQL) to analyze network flows and identify abnormal data movement to build and insider-threat profile.
Issued on: Feb 18, 2024
Inside Encryptodera - Event Participant
Participant in the February 2024 monthly event featuring the Encryptodera module
Issued on: Feb 18, 2024
HopsNStuff
This analyst completed the "HopsNStuff" module, investigating a cyber attack through the analysis of endpoint process events and command-line activities. They demonstrated skills in identifying anomalous file behavior by using Kusto Query Language (KQL) to uncover malicious activities. The investigation highlighted their ability to analyze and deobfuscate malicious PowerShell commands, effectively identifying and responding to data exfiltration techniques.
Issued on: May 14, 2024
Super Fan
This badge is issued to any KC7 player who has completed 3 modules or more!
Issued on: May 14, 2024
Rap Beef
This analyst investigated a themed scenario involving rival hip-hop artists. They used key cybersecurity skills to identify suspicious communications and activities, analyzing internal messages to track unauthorized exchanges and uncover patterns. This exercise reinforced critical skills in data analysis, threat detection, and the application of cybersecurity principles in unconventional contexts.
Issued on: May 19, 2024
Jojo's Hospital
This analyst completed the JoJo's Hospital module, investigating a cyber attack involving an Initial Access Broker and a Ransomware-as-a-Service (RaaS) operation. They demonstrated skills in detecting phishing and malvertising tactics, tracing unauthorized network access, understanding hacker collaboration, and analyzing ransomware activities.
Issued on: Jul 19, 2024
Azure Crest
This analyst successfully investigated a ransomware attack against a hospital. They demonstrated the ability to pivot around datasets using Kusto Query Language (KQL) to uncover the risks associated with prioritizing cost over security. This exercise reinforced skills in identifying vulnerabilities and understanding the broader implications of inadequate security measures in a healthcare context.
Issued on: Jul 23, 2024
.png)
Solvi Systems
This analyst investigated a cybersecurity incident at Solvi Systems by identifying an attempted XSS attack and tracking a phishing email campaign. Using Kusto Query Language (KQL), they uncovered the threat actor’s reconnaissance efforts, system compromises, and malware activities, providing critical insights for enhancing security measures.
Issued on: Jul 27, 2024
AzureCrest
This analyst investigated a ransomware attack, where cost-cutting measures led to a single point of failure in their systems. This exercise highlighted the risks associated with prioritizing cost over security and reinforced skills in identifying vulnerabilities and understanding the broader implications of inadequate security measures in a healthcare context.
Issued on: Jul 27, 2024
Critical Compromise (ICS)
This analyst completed the Critical Compromise in Chicago module, demonstrating their ability to investigate a malware-based attack on a SCADA system. Through their use of Kusto Query Language (KQL), they uncovered the deployment of malicious software that disrupted the power grid. Their investigation helped identify the attack's origin and provided insights into the attackers’ methods, ultimately contributing to the restoration of normal operations and improving defenses for critical infrastructure.
Issued on: Nov 22, 2024
shkody_kot played 27 games
Balloons Over Iowa 4405/4405
Envolve Labs: With a twist! 220/950
HopsNStuff 14265/14265
KRUSTY KRAB 7210/7360
Dai Wok Foods 11600/11600
Castle & Sand 8450/13050
DAILY7 🌎🌟 371/4028
World Domination Nation 8220/8220
MCJ Walker 9065/15265
Sunlands 8437/8437
Spooky Sweets 5990/7640
Scholomance 3190/5640
A Storm Is Brewing In the Lab 0/5670
Private Module 4390/4405
A Scandal in Valdoria 🌟 2430/2430
Inside Encryptodera 3990/3990
Solvi Systems 2860/2860
AzureCrest - The full version 8790/8790
System Shutdown at Azure Crest! (Short Version) 4800/4800
A Rap Beef (START HERE) 950/950
Jojo's Hospital 610/610
VirusTotal Fundamentals 790/2620
Frognado in Valdoria 820/1690
A Rap Steak 14610/19010
Critical Compromise In Chicago - ICS 2870/2870
Valdoria Votes 2750/2750
French Socksess Story 10/2080
Issue Badge to shkody_kot
| # | Image | Badge | Description | Action |
|---|---|---|---|---|
| 1 |  | Advanced Persistent Analyst | Someone who failed, got up, and tried again! | |
| 2 |  | Helping Hand | This award is community-nominated! Someone in the KC7 community has recognized this user for their contributions to others! | |
| 3 |  | Notre Dame Challenge | Completed the cybersecurity challenge event at Notre Dame in June 2023 | |
| 4 |  | Cyber Challenge Series: Team Winner | This badge is issued to KC7 players who were members of a team that placed top 3 in a Blue Team Cyber Challenge event! | |
| 5 |  | Most Improved | Someone who really improved over the course of a KC7 event! | |
| 6 |  | Cyber Challenge Series: Winner | This badge is issued to KC7 players who placed top 3 (as an individual) in an Blue Team Cyber Challenge event! | |
| 7 |  | 30 day hot steak | Awarded to a user who has answered a question for 30 days in a row. | |
| 8 |  | 90 day streak | Awarded to a user who has answered a question for 90 days in a row. | |
| 9 |  | The Teacher | Someone who really helped lift up their peers and enabled others to learn! | |
| 10 |  | Bright Future | Someone who shows a lot of potential as a future cyber analyst! | |
| 11 |  | Azure Crest | This analyst investigated a ransomware attack, where cost-cutting measures led to a single point of failure in their systems. This exercise highlighted the risks associated with prioritizing cost over security and reinforced skills in identifying vulnerabilities and understanding the broader implications of inadequate security measures in a healthcare context. | |
| 12 |  | 2024 SANS New2Cyber CTF Participant | This badge has been awarded to those who took part in the 2024 SANS New2Cyber x KC7 Capture The Flag (CTF) challenge, which involved investigating a ransomware attack on a hospital. | |
| 13 |  | 60 day streak | Awarded to a user who has answered a question for 60 days in a row. | |
| 14 |  | 120 day streak | Awarded to a user who has answered a question for 120 days in a row! | |
| 15 | | Intro Master |