Learn how to integrate gVisor and Falco on Docker

Let’s get one thing straight: This article is not at all a dig on BloodHound.

Leveraging CVE, patch diffing, and root cause analysis to kickstart your vulnerability hunting adventure.

Our risk analysis platform recently alerted us to a malicious package in the NPM ecosystem targeting Bucky Client, a project owned by HubSpot.

In August 2022, the Vectra Protect team identified an attack path that enables malicious actors with file system access to steal credentials for any Microsoft Teams user who is signed in.

Uber suffered a cyberattack Thursday afternoon with a hacker gaining access to vulnerability reports and sharing screenshots of the company's internal systems, email dashboard, and Slack server.

Discover DYLD_INSERT_LIBRARIES hijacks on macOS. Contribute to slyd0g/DylibHijackTest development by creating an account on GitHub.

Get a close look at iOS testing with this guide by researcher Alxhh. Learn about the methods that allow you to test modern apps right away!

To properly assess the security of a web application, it’s important to analyze it with regard to the server it will run on. Many things depend on the server, from processing user requests to the easiest way of achieving RCE. Armed with knowledge about the…

In part one of this post, Tristram teaches you how to use TXT records to stage payloads that can be retrieved through DNS lookups.

An experimental Velociraptor implementation using cloud infrastructure - GitHub - Velocidex/cloudvelo: An experimental Velociraptor implementation using cloud infrastructure

TrustedSec's blog is an expert source of information on information security trends and best practices for strategic risk management.

This post is a rebuttal to the recent guide on “Securing the Software Supply Chain” published by CISA, ODNI, and the NSA.

A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing. - GitHub - Ge0rg3/requests-ip-rotator: A Python li...

A Virtual FIDO2 USB Device. Contribute to bulwarkid/virtual-fido development by creating an account on GitHub.

Anonymously bruteforce Active Directory usernames from Domain Controllers by abusing LDAP Ping requests (cLDAP) - GitHub - lkarlslund/ldapnomnom: Anonymously bruteforce Active Directory usernames f...

Grand Theft Auto 6 gameplay videos and source code have been leaked after a hacker allegedly breached Rockstar Game's Slack server and Confluence wiki.

As the creator of the world’s first smart home cybersecurity hub, Bitdefender
regularly audits popular IoT hardware for vulnerabilities that might affect
customers if left unaddressed.

Volatile Artifact Collector. Contribute to cado-security/varc development by creating an account on GitHub.

I’m building an open-source USB drive with a hidden self-destruct feature. Say goodbye to your data if you don’t lick your fingers before plugging it