
<feed xmlns="http://www.w3.org/2005/Atom"> <id>https://0xatef.github.io//</id><title>Mohamed Atef</title><subtitle>Cyber Defense Lead &amp; Consultant | Threat-Informed Defense Strategy | DFIR, CTI, TH, CA &amp; Detection Engineering | ThreatOps Automation</subtitle> <updated>2026-01-03T14:21:54+00:00</updated> <author> <name>Mohamed Atef</name> <uri>https://0xatef.github.io//</uri> </author><link rel="self" type="application/atom+xml" href="https://0xatef.github.io//feed.xml"/><link rel="alternate" type="text/html" hreflang="en" href="https://0xatef.github.io//"/> <generator uri="https://jekyllrb.com/" version="4.4.1">Jekyll</generator> <rights> © 2026 Mohamed Atef </rights> <icon>/assets/img/favicons/favicon.ico</icon> <logo>/assets/img/favicons/favicon-96x96.png</logo> <entry><title>Argus-CTI ML-Driven RSS Threat Feed Pipeline for MISP</title><link href="https://0xatef.github.io//posts/Argus_CTI/" rel="alternate" type="text/html" title="Argus-CTI ML-Driven RSS Threat Feed Pipeline for MISP" /><published>2025-04-25T23:00:00+00:00</published> <updated>2025-04-25T23:00:00+00:00</updated> <id>https://0xatef.github.io//posts/Argus_CTI/</id> <content src="https://0xatef.github.io//posts/Argus_CTI/" /> <author> <name>Mohamed Atef</name> </author> <category term="Projects" /> <category term="Solution" /> <category term="Open-Source" /> <category term="MISP" /> <category term="TIP" /> <category term="Hugging-Face" /> <summary> Argus-CTI Argus-CTI is an automated pipeline that ingests RSS threat feeds, applies machine learning inference to classify or extract relevant cyber threat intelligence (CTI) tags, filters entries based on user-defined rules (e.g., banking sector incidents, vendor advisories, new CVEs), and pushes structured events into MISP (Malware Information Sharing Platform). 🛡️ Why “Argus”? In Greek m... </summary> </entry> <entry><title>How To Install MISP</title><link href="https://0xatef.github.io//posts/MISP_Deployment/" rel="alternate" type="text/html" title="How To Install MISP" /><published>2025-04-24T05:30:00+00:00</published> <updated>2025-04-24T17:16:33+00:00</updated> <id>https://0xatef.github.io//posts/MISP_Deployment/</id> <content src="https://0xatef.github.io//posts/MISP_Deployment/" /> <author> <name>Mohamed Atef</name> </author> <category term="Projects" /> <category term="Solution" /> <category term="Open-Source" /> <category term="MISP" /> <category term="TIP" /> <summary> Installing MISP Using Docker MISP (Malware Information Sharing Platform &amp;amp; Threat Sharing) is an open-source platform designed for sharing structured threat intelligence. By utilizing Docker, the deployment process of MISP becomes simplified, encapsulating all the necessary components into containers. In this guide, we will walk you through the steps required to deploy MISP using Docker. P... </summary> </entry> <entry><title>How Send A Logs From API To Qradar SIEM Through Syslog Middleware</title><link href="https://0xatef.github.io//posts/API-to-QRadar-Through-Syslog-Middlewares/" rel="alternate" type="text/html" title="How Send A Logs From API To Qradar SIEM Through Syslog Middleware" /><published>2024-09-07T05:00:00+00:00</published> <updated>2024-09-07T05:00:00+00:00</updated> <id>https://0xatef.github.io//posts/API-to-QRadar-Through-Syslog-Middlewares/</id> <content src="https://0xatef.github.io//posts/API-to-QRadar-Through-Syslog-Middlewares/" /> <author> <name>Mohamed Atef</name> </author> <category term="Projects" /> <category term="Solution" /> <category term="Integrations" /> <category term="Syslog" /> <category term="API" /> <category term="Middleware" /> <summary> How to Send Logs From an API to QRadar SIEM Through Syslog Middleware In this guide, you will learn how to send logs from an API to IBM QRadar SIEM using a syslog middleware approach. We’ll walk through extracting the logs from an API, preparing them in the proper format, and sending them to QRadar. . Get Logs or Required Data from Api The first step is to gather the data or logs you need f... </summary> </entry> <entry><title>How To Install Book Stack</title><link href="https://0xatef.github.io//posts/Book-Stack/" rel="alternate" type="text/html" title="How To Install Book Stack" /><published>2023-09-02T03:00:00+00:00</published> <updated>2023-09-02T03:00:00+00:00</updated> <id>https://0xatef.github.io//posts/Book-Stack/</id> <content src="https://0xatef.github.io//posts/Book-Stack/" /> <author> <name>Mohamed Atef</name> </author> <category term="Projects" /> <category term="Solution" /> <category term="Open-Source" /> <category term="WIKI" /> <summary> Book Stack Simple &amp;amp; Free Wiki Software BookStack is a simple, self-hosted, easy-to-use platform for organising and storing information. . installation Docker Since it’s a new ubuntu machine will start by install docker at first sudo apt-get update &amp;amp;&amp;amp; sudo apt-get install ca-certificates curl gnupg sudo install -m 0755 -d /etc/apt/keyrings curl -fsSL https://download.docker.c... </summary> </entry> </feed>
