CreateRemoteThread()

VirtualAllocEx()

WriteProcessMemory()

NtMapViewOfSection()

LoadLibrary()

RegSetValueEx()

CreateProcess()

SetWindowsHookEx()

GetProcAddress()

NtUnmapViewOfSection()

0x4D5A90000300000004000000FFFF

0x48656C6C6F20576F726C6421

0xE8000000005589E583EC2083

0x33C0648B00000000000000

0x68FFFFFFFF6AFFE8

0xFF25C0000000A1D8BFE97702

0x74FF858D8500FC89D9

0x8B0424C3908D7426008D

0xC745FC00000000E9A28

0x558BEC83EC088B4508

Process Injection

API Hooking

DLL Hijacking

Process Hollowing

Obfuscation

Persistence

Memory Manipulation

Code Injection

Registry Manipulation

Rootkit Techniques

Lateral Movement

Privilege Escalation

Living Off The Land

Fileless Malware

AMSI Bypass

Stack Overflow

Heap Spray

Return Oriented Programming

Thread Hijacking

PPID Spoofing

AZIZ KAPLAN

Malware Analyst / Threat Intelligence Analyst and Threat Researcher

About Me

Cybersecurity professional specializing in Malware Analysis, Threat Intelligence and Threat Researching.

After graduating from Bahcelievler Erkan Avci Industrial Vocational High School, I earned admission to Yeditepe University's Management Information Systems program. I've been developing my skills in cybersecurity since the age of 15, beyond what was taught in formal education. I completed a 6-month internship at InfinitumIT, a cybersecurity consultancy company, during my late teens and early twenties.

Following my internship, I worked as a Cybersecurity Engineer at the same company, where I was responsible for installation, configuration, and management of open-source cybersecurity products for clients. Additionally, I took on roles in Cyber Threat Intelligence and Malware Analysis. After spending a year and a half at InfinitumIT, I moved to ThreatMon IT, where I began working as a Malware Analyst and Malware Intelligence specialist. I continue to work in the Malware R&D team since joining the company.

Education

Yeditepe University
Management Information Systems
2020-2025
Bahcelievler Erkan Avci Vocational High School
Information Technology

Languages

Turkish: Native Language
English: B2 Level

My Expertise

Cyber Threat Intelligence

Expert in tracking and analyzing threats in the digital landscape.

Malware Analysis

Skilled in both static and dynamic malware analysis techniques.

Open-Source Security Specialist

Expert in implementation and management of open-source security solutions.

Security Tool Development

Developer of cybersecurity tools and custom solutions.

Skills & Competencies

Malware Development

Python

Bash Scripting

C++

Java

Cyber Threat Intelligence

Threat Researching

Opensource Threat Hunting

Static Malware Analysis

Dynamic Malware Analysis

Malware Hunting

OSINT

Tracking & Hunting Adversaries

C2 Hunting

Social Engineering

Yara Rule Creation

Sigma Rule Creation

Suricata Rule Creation

Open Source Security Product Management

Logsign SIEM

Wazuh SIEM

MISP

OpenCTI

Shuffle SOAR

N8N SOAR

Tpotce Honeypot

The Hive & Cortex

Suricata & Snort IDS

Iptables & UFW Firewall

Modsecurity WAF

Elastic Stack Log Management

Aurora - EDR Based on Sigma

IntelOwl

Professional Experience

Malware Analyst & Threat Researcher

ThreatMon | Advanced Threat Intelligence Platform | June 2024 - Present

Remote

Working as a Malware Analyst and Threat Researcher at ThreatMon's Advanced Threat Intelligence Platform. Key responsibilities include:

Analyzing new and emerging malware threats
Creating detailed technical malware analysis reports
Tracking threat actors and their TTPs
Extracting and validating IOCs
Contributing to threat intelligence research

Cyber Security Engineer

InfinitumIT | Istanbul | July 2023 - June 2024

Worked with open-source cybersecurity products and provided services to customers. Key responsibilities included:

Working on the CTI (Cyber Threat Intelligence) within the Malware R&D team
Detecting and capturing malware released by threat actors on the Dark Web using social engineering methods
Collaborating with the Malware R&D team for analysis
Writing Malware Analysis reports (extracting IOCs, categorizing APTs and Malware Families)
Creating comprehensive Cyber Threat Intelligence reports
Installing, configuring, managing and advising customers on open source cybersecurity products

Teaching Assistant

Cyber Security Course | Istanbul | 2018-2019

Served as a Teaching Assistant for Atil Samancioglu's Ethical Hacker Attacks and Network Attacks courses. Responsibilities included:

Assisting students with technical issues
Answering questions related to course material
Supporting participants in practical exercises

Malware & Tool Development

Moriarty Project

One of the world's most widely used open-source phone number intelligence tools. Provides detailed information and analysis capabilities for phone numbers.

View on GitHub

SocialX

"Socialx" is a Social Engineering And Remote Access Trojan Tool. You can generate fud backdoor and you can embed any file you want inside of the exe file.

View on GitHub

Beef Over AWS

Beef Over AWS is a tool that allows you to use Beef-XSS over WAN securly and anonymously.

View on GitHub

Auto IOC - MISP

This system allows you to add IOCs (Indicators of Compromise) to your MISP server manually or automatically. It includes 15 different services.

View Details

AskJoe - As Contributor

This is a Ghidra script that calls OPENAI to give meaning to decompiled functions, enhancing reverse engineering workflows.

View Details