Georgi Nikolov

Researcher

georgi-nikolov-09867a99 0000-0002-9020-8408

Georgi Nikolov attained a Masters Degree from the Vrije Universiteit Brussels (VUB), Belgium in Applied Infomatics in 2015 and since then has been an integral part of the “Cyber Defence Lab” at the Royal Military Academy, Brussels, Belgium. His domains of expertise are analysis and detection of Advanced Persistent Threats and Windows Forensics.

Georgi Nikolov is part of two “Cyber Defence Lab” projects, responsible for the design, development and implementation of the Multi-agent System for Advanced Persistent Threat detection (MASFAD). Both projects were part of a CAT-A and CAT-B projects organized by the European Defence Agency, together with a consortium of European countries. The development of MASFAD has led to multiple publications in the field of threat detection.

He has followed multiple courses on Windows Forensics, leading to certifications as GIAC Certified Forensic Analyst and GIAC Defending Advanced Threats as part of Purple Team.

Georgi Nikolov has also participated in lectures at the European Space Agency, where the “Cyber Defence Lab” was tasked to give training courses on Cyber Awareness and Cyber Security. Part of the trainings consisted in discussing the skills necessary to be able to quickly identify a problem as a cyber-incident and react appropriately while correctly preparing for a forensic analysis.

Furthermore, he is active in NATO, where he is a Belgian representative in the Information Systems Technology (IST) research group IST-184, focusing on Cybersecurity and Visual Analytics.

Blog

Georgi Nikolov has published 27 blog posts on this website. Favorite topics include Offensive Security | 7 APT Detection | 6 Forensics | 4 Windows | 4 Linux | 4

• CYLAB at the DIGILIENCE Conference
  Nov 18, 2024 | 519 views
• CYLAB at the ARES conference 2024
  Aug 9, 2024 | 645 views
• The MARK python client
  Jan 11, 2024 | 738 views
• What is Situation Awareness?
  Oct 20, 2023 | 1025 views
• Complicated and Complex Systems- Brief Introduction
  Oct 5, 2023 | 1462 views
• Recovering deleted files with Foremost
  Sep 14, 2023 | 4169 views
• Changing Docker's default subnet IP range
  Jul 13, 2023 | 14667 views
• VirusTotal, what is it and what is it good for?
  Jan 13, 2023 | 5246 views
• MITRE ATT&CK and the ATT&CK Matrix
  Apr 7, 2022 | 3231 views
• CyberChef, the Cyber Swiss Army Knife
  Mar 10, 2022 | 4855 views

View more

Projects

• DAP/24-05 : Multi-agent System For Advanced Persistent Threat Detection
• DAP/20-03 : Building a multi-agent system for APT detection
• SIC/12 : Building a multi-agent system for APT detection

Publications

• Detection of APTs through the use of Visual Analytics with the MASFAD framework
  Georgi Nikolov and Wim Mees
  2024
• Evaluation of Cyber Situation Awareness - Theory, Techniques and Applications
  Georgi Nikolov, Axelle Perez and Wim Mees
  ARES '24: Proceedings of the 19th International Conference on Availability, Reliability and Security
  2024
• Visualization for Cyber Complex Systems: Application, Issues and Future Work
  Georgi Nikolov, Margaret Varga, Susan Träber Burdin, Carsten Winkelholz, Kaur Kullman and Valérie Lavigne
  Digital Transformation, Cybersecurity, And Resilience DIGILIENCE 2024
  2024
• Detection of previously unknown Advanced Persistent Threats through Visual Analytics with the MASFAD framework
  Georgi Nikolov and Wim Mees
  2023 International Conference on Military Communications and Information Systems
  2023
• Detection through Visualization for the Multi-Agent System for APT Detection
  Georgi Nikolov, Thibault Debatty and Wim Mees
  Digital Transformation, Cybersecurity, And Resilience DIGILIENCE 2022
  2022
• Evaluation through deployment of the Multi-agent System For Advanced Persistent Threat Detection framework in a Cyber Range environment
  Georgi Nikolov, Thibault Debatty and Wim Mees
  Digital Transformation, Cybersecurity, And Resilience DIGILIENCE 2022
  2022

View more