Weekly Letters

BTL1 Learning Journey

Every week I publish a detailed letter documenting what I’m learning through the BTL1 certification. Each letter combines technical concepts, practical examples, and real-world applications for SOC/Blue-Team roles.

What’s in Each Letter?

Blue Team Fundamentals: Detection engineering, log analysis, incident response, and defensive security
Practical Examples: Scripts, runbooks, detection rules, and real-world applications
Reflections: Challenges faced, lessons learned, and how concepts connect

Letter Archive

Letters are organized from newest to oldest. Each represents one week of focused learning and practical work.

Latest Letter

Week 02 - Cybersecurity Skills Transfer to the Real World →

How I avoided a real-life phishing attempt using cybersecurity training, plus reinforcing key SOC concepts like SIEM, EDR, HIDS/HIPS, Risk Management, and more!

Topics covered:

Story Time: The Phishy Man (real-life social engineering)
SIEM vs EDR vs HIDS/HIPS - understanding the differences
Risk Management Framework and the 4 ways to manage risk
Vulnerability Scanning, DLP, NIDS/NIPS, and more
Security Awareness Training saves lives (literally!)

Read Week 02 now →

Subscribe on YouTube for video demonstrations!

Previous Letters

Week 01 - Rediscovering Network Tools Through a Security Lens →

Diving deep into Netstat, Traceroute, Dig/Nslookup, and Nmap from both Blue Team and Red Team perspectives.

Why Weekly Letters?

Consistency - Committing to weekly output builds discipline
Teaching Reinforces Learning - Explaining concepts deepens understanding
Portfolio Building - Demonstrating capability through real work
Accountability - Public commitment keeps me on track

The format combines blog-style reflection with technical tutorial content, showing both the “what” and the “why” behind each concept.

New letters published weekly! Follow along on YouTube for video walkthroughs.