In this guide you will learn how to install and protect WordPress with the Open Source Web Application Firewall (WAF) ModSecurity. We will also install the latest protection rules from the OWASP Core Rule Set (CRS). A WAF is a great addition to the Cyber…

We are a team of exceptional security consultants, with the knowledge and insight to identify vulnerabilities and help you secure your systems

A cyberattack appears to be behind a provincewide disruption of health-care services in Newfoundland and Labrador that has affected thousands of appointments and procedures, including those involving COVID-19 testing.

Posted by Eduardo Vela, Google Bug Hunters Team  Starting today and for the next 3 months (until January 31 2022), we will pay 31,337 USD to...

Independently secure, together not so much. A story of 2 WP plugins.

Domain Takeover occurs when the organization did not renew its domain but still use it in their code and infrastructure. When the attacker registers the abandoned domain, they own the domain, including its subdomains and other types of DNS records.

The second episode of the Honeypot Journals. This time in our honeynet: attacks in the “cloud” vs attacks on residential endpoints.

How this Shellbot malware works, dig into malware analysis, and how to detect it with Falco and Sysdig Secure.

Introduction If you’re running a big enough network, chances are you have a monitoring server tucked away somewhere, silently watching and ...

Master the art of fuzzing with Hardik Shah. Practical training on Linux, Windows, and OSS platforms.

Build PCaps for: tcpdump, Fortigate, Check Point 'fw monitor' and Cisco ASA.

:alarm_clock: :fire: A TCP proxy to simulate network and system conditions for chaos and resiliency testing - GitHub - Shopify/toxiproxy: A TCP proxy to simulate network and system conditions for c...

Application security issues found by Assetnote

Subdomain finder. Contribute to gfek/Lepus development by creating an account on GitHub.

Chinese scientists claim to built the world's fastest supercomputer, even faster than Google Sycamore

Perception Point researchers have discovered a vulnerability in macOS which allows an attacker to bypass App Sandbox restrictions. The vulnerability was disclosed to Apple, and the fix was announced on the latest macOS Monterey 12.0.1 security update on October…

Password Hunter in Active Directory. Contribute to oldboy21/LDAP-Password-Hunter development by creating an account on GitHub.

What happens when SAST tools do more than just scanning? What if security scanners abuse their privileges?

This blog serves as the first part of our series that deep dives into Microsoft Defender for Endpoint on AWS.

BugBuntu Linux. Contribute to halencarjunior/BugBuntu development by creating an account on GitHub.