The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline. - OWASP/DevSecOpsGuideline

Full official text of NIS 2 Directive 2022/2555 arranged by chapters and articles, with the ability to search for any keywords

Posted by Eugene Rodionov and Ivan Lozano, Android Team With steady improvements to Android userspace and kernel security, we have notice...

To ensure NSA's ability to stay in front of our adversaries' tactics and techniques surrounding artificial intelligence (AI), the Agency launched the NSA Artificial Intelligence Security Center (AISC). The AISC will be a key part of NSA's cybersecurity mission…

Malware Function Annotation. We introduced a few different machine learning models that learn to annotate function names from PE malware disassembly.

The Center for Internet Security has released a document that contains mappings of the CIS Controls and Safeguards v8 to NIST CSF 2.0.

Malicious code planted in xz Utils has been circulating for more than a month.

Reverse Engineer @ FLARE/Google. Content creator on YouTube/Pluralsight - jstrosch

Keylogging server and client that uses DNS tunneling/exfiltration to transmit keystrokes through firewalls. - Geeoon/DNS-Tunnel-Keylogger

از این کانال حمایت کنید تا بتواند به قابلیت‌های اضافی دسترسی پیدا کند.

Splunk patches high-severity vulnerabilities in Enterprise, including an authentication token exposure issue.

It’s dangerous to defend the registry alone! Take this!

CISA has revealed the first draft for an update of the Cyber Incident Reporting for Critical Infrastructure (CIRCIA) Act of 2022

In the ever-evolving landscape of cybersecurity, staying one step ahead of potential threats is crucial. As a security architect, your role…

xz-utils backdoor situation (CVE-2024-3094). GitHub Gist: instantly share code, notes, and snippets.