STICKY RICE BYTES

Security served fresh, one byte at a time
Welcome to Sticky Rice Bytes. I write about security knowledge that sticks. No fluff, just actionable insights.

Recent Posts

Filter by topic:

🌐 All ⚙️ automation crowdstrike 🔬 forensics 🍎 macos 🤖 soar tracecat
2025.11.28
🍎 macOS 🤖 SOAR CrowdStrike Tracecat 🔬 forensics ⚙️ automation
Automating Chrome History Collection using CrowdStrike and Tracecat - Part 3: Professional Polish
Complete the automated forensic workflow with proper cleanup, session termination, and final documentation. Part 3 covers removing temporary files without destroying evidence, graceful RTR session closure, and comprehensive audit trail completion.
2025.11.20
🍎 macOS 🤖 SOAR CrowdStrike Tracecat 🔬 forensics ⚙️ automation
Automating Chrome History Collection using CrowdStrike and Tracecat - Part 2: The Collection Engine
Build the core evidence collection engine for automated Chrome history forensics. Part 2 covers integrity hashing, file copying with validation checkpoints, evidence packaging, and upload to RTR cloud storage.
2024.11.08
🍎 macOS 🤖 SOAR CrowdStrike Tracecat 🔬 forensics ⚙️ automation
Automating Chrome History Collection using CrowdStrike and Tracecat - Part 1: Foundation & Discovery
Learn how to automate Chrome browser history collection from macOS devices using CrowdStrike RTR and Tracecat SOAR. Part 1 covers workflow foundations, device validation, and user discovery.