Following a serious vulnerability disclosure to Atrient, the security researcher who disclosed the vulnerability was assaulted by their COO at ICE.

What Even Are You?

In this report, Insikt Group shares insight into a sustained cyberespionage campaign assessed to be conducted by Chinese state-sponsored threat actor APT10.

4 votes and 0 comments so far on Reddit

Stealthy backdoor for Windows operating systems. Contribute to rokups/virtual-reality development by creating an account on GitHub.

Santiago Chile Feb 2019

A highly configurable tool to check for whatever you like against any number of hosts. - proabiral/inception

IntroductionIt’s 2019 and your site needs a SLL/TLS certificate. These can be quite expensiv, but fear not, there are solutions that are free!Enter Let’s Encrypt. Scenario and prerequisiteThe scenari

Making open-source hardware systems more available increases regular people’s security by giving them verifiable secure options.

Following a serious vulnerability disclosure to Atrient, the security researcher who disclosed the vulnerability was assaulted by their COO at ICE.

The $5.5 billion commercial health record system is 'not survivable in a cyber-contested environment,' according to an internal Pentagon report.

1 vote and 0 comments so far on Reddit

In my previous post, I tried to demonstrate how powerful and cool reverse engineering Android apps can be. I did this by showing how to…

The thoughts I’m going to relate in this post may seem obvious and even trivial to some of you, but my experience with water cooler chats with my workmates s...

Cybereason detected an evasive infection technique used to spread a variant of the Ramnit banking Trojan as part of an Italian spam campaign. We investigate this attack, its use of sLoad, and its adoption of LOLbins to minimize discovery.

The latest news from Google on open source releases, major projects, events, and student outreach programs.

CipherSweet is a PHP library that provides searchable encryption for the most common cases a web developer is likely to encounter.

A WebSocket C2 Tool. Contribute to Arno0x/WSC2 development by creating an account on GitHub.

In the second part of his guide to AWS S3 security, hedgehog lab's Joe Keilty evaluates four methods for securely providing applications with access to your S3 resources.