<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
<channel>
  <title>1tsprune Blog</title>
  <link>https://www.1tsprune.com/blog.html</link>
  <description>Cybersecurity blog by Eky Januarta (1tsprune).</description>
  <language>en</language>
  <lastBuildDate>Wed, 08 Jul 2026 00:00:00 +0000</lastBuildDate>
  <atom:link href="https://www.1tsprune.com/feed.xml" rel="self" type="application/rss+xml"/>
  <item>
    <title>Custom Wazuh Rules & Decoders</title>
    <link>https://www.1tsprune.com/blog/wazuh-custom-rules-decoders/</link>
    <guid isPermaLink="true">https://www.1tsprune.com/blog/wazuh-custom-rules-decoders/</guid>
    <pubDate>Fri, 19 Jun 2026 00:00:00 +0000</pubDate>
    <description><![CDATA[Hands-on guide to custom Wazuh rules and decoders using Bayu Sangkaya's open-source repository.]]></description>
  </item>
  <item>
    <title>Wazuh & Firewalls</title>
    <link>https://www.1tsprune.com/blog/wazuh-firewalls/</link>
    <guid isPermaLink="true">https://www.1tsprune.com/blog/wazuh-firewalls/</guid>
    <pubDate>Thu, 18 Jun 2026 00:00:00 +0000</pubDate>
    <description><![CDATA[Pipe Palo Alto, FortiGate, pfSense, and Trend Micro logs into Wazuh with decoders and correlation rules.]]></description>
  </item>
  <item>
    <title>Open-Source SOC Stack</title>
    <link>https://www.1tsprune.com/blog/open-source-soc-platform/</link>
    <guid isPermaLink="true">https://www.1tsprune.com/blog/open-source-soc-platform/</guid>
    <pubDate>Sun, 14 Jun 2026 00:00:00 +0000</pubDate>
    <description><![CDATA[Replaced a commercial SIEM with a complete open-source SOC stack, inspired by Bayu Sangkaya's case study.]]></description>
  </item>
  <item>
    <title>Pentesting Government Sites</title>
    <link>https://www.1tsprune.com/blog/pentesting-gov/</link>
    <guid isPermaLink="true">https://www.1tsprune.com/blog/pentesting-gov/</guid>
    <pubDate>Thu, 14 May 2026 00:00:00 +0000</pubDate>
    <description><![CDATA[Five government VAPT engagements: vulnerability patterns, SQLi to shell, and reporting to officials.]]></description>
  </item>
  <item>
    <title>Automating XSS Discovery</title>
    <link>https://www.1tsprune.com/blog/automated-xss-dalfox-nuclei/</link>
    <guid isPermaLink="true">https://www.1tsprune.com/blog/automated-xss-dalfox-nuclei/</guid>
    <pubDate>Fri, 08 May 2026 00:00:00 +0000</pubDate>
    <description><![CDATA[Pipeline: Dursgo crawls, Dalfox fuzzes, Nuclei scans. Custom templates, blind XSS, shell script.]]></description>
  </item>
  <item>
    <title>Wazuh SIEM Install Guide</title>
    <link>https://www.1tsprune.com/blog/wazuh-siem/</link>
    <guid isPermaLink="true">https://www.1tsprune.com/blog/wazuh-siem/</guid>
    <pubDate>Tue, 03 Mar 2026 00:00:00 +0000</pubDate>
    <description><![CDATA[Deploy Wazuh SIEM on Ubuntu from scratch with the official installer. Production-ready in under an hour.]]></description>
  </item>
  <item>
    <title>CEH vs ECIH vs CND</title>
    <link>https://www.1tsprune.com/blog/ceh-ecih-cnd/</link>
    <guid isPermaLink="true">https://www.1tsprune.com/blog/ceh-ecih-cnd/</guid>
    <pubDate>Thu, 05 Feb 2026 00:00:00 +0000</pubDate>
    <description><![CDATA[Honest comparison of three EC-Council certifications based on firsthand experience.]]></description>
  </item>
  <item>
    <title>Indonesia Cybersec 2026</title>
    <link>https://www.1tsprune.com/blog/indonesia-cybersec-2026/</link>
    <guid isPermaLink="true">https://www.1tsprune.com/blog/indonesia-cybersec-2026/</guid>
    <pubDate>Wed, 07 Jan 2026 00:00:00 +0000</pubDate>
    <description><![CDATA[PDP Law enforcement, BSSN mandates, ransomware threats, and the workforce gap in Indonesia.]]></description>
  </item>
  <item>
    <title>Malware Analysis & IOCs</title>
    <link>https://www.1tsprune.com/blog/malware-analysis-ioc/</link>
    <guid isPermaLink="true">https://www.1tsprune.com/blog/malware-analysis-ioc/</guid>
    <pubDate>Thu, 01 Jan 2026 00:00:00 +0000</pubDate>
    <description><![CDATA[Runtime and dynamic analysis techniques for extracting IOCs from live malware samples.]]></description>
  </item>
</channel>
</rss>
