Detection Engineering is the process of optimizing security controls to get the most value out of them. Therefore, it is essential to prioritize your efforts according to your organization's needs and requirements. Here we cover the methodology of Detection…

Introduction to Fault Injection Attacks

Sandman is a NTP based backdoor for red team engagements in hardened networks. - GitHub - Idov31/Sandman: Sandman is a NTP based backdoor for red team engagements in hardened networks.

Trivy now supports scanning AWS resources for security misconfigurations

Without a deep understanding of what happens under the hood of your CI, you might be vulnerable to innovative supply chain attacks

Stride Threat modelling, Dread Threat modelling, Threat modelling assessment, STRIDE methodology, DREAD methodology

We found a security related issue in most recent CrowdStrike Falcon Sensor. The bug itself is not worth a blogpost, as the severity is pretty low. However, we'd like to shed some light on a vulnerability submission and disclosure process with CrowdStrike:…

During our analysis of Zyxel’s device […]

Operating system access controls, that constrain which programs can open which files, have existed for almost as long as computers themselves. Access controls are still widely used and are more flexible and efficient when compared to cryptographically protecting…

A pure python implementation of CRYSTALS-Kyber. Contribute to jack4818/kyber-py development by creating an account on GitHub.

Information Security Checklist to protect small and medium sized organizations from emerging information security threats

Masky is a python library providing an alternative way to remotely dump domain users’ credentials thanks to an ADCS. A command line tool has been built on top of this library in order to easily harvest PFX, NT hashes and TGT on a larger scope.

HTTP header Blind SQL injection Example is explained in this article to show how to exploit SQL injection in HTTP headers.

JD Edwards EnterpriseOne Tools 9.2 or lower versions allow unauthenticated attackers to bypass the authentication and get Administrator rights on the system.

In the third part of our Securing Developer Tools series, we look at a critical vulnerability that affects one of the most popular code editors: Visual Studio Code.

SBOM is a key piece in securing the software supply chain and fundamental for vulnerability matching and management.

Rapidly Search and Hunt through Windows Forensic Artefacts - GitHub - WithSecureLabs/chainsaw: Rapidly Search and Hunt through Windows Forensic Artefacts

In the first part of this series , we reviewed how Pwn2Own contestant Manfred Paul was able to compromise the Mozilla Firefox renderer process via a prototype pollution vulnerability in the await implementation. In modern browser architecture design, compromising…