INFOSEC

Child Porn Allegations At Patreon After Security Team Fired

Shortly after Patreon dismissed their whole cybersecurity team, allegations of illegal activity and child porn emerge.

TECHNICAL

Windows Post Exploitation - Create Files and Log Keystrokes

Learn how to create files on the target machine using meterpreter, change the file timestamps, and log key strokes on the target system.

TECHNICAL

HTB RouterSpace Walkthrough

Andy from Italy is back with another HackTheBox technical writeup, this time he takes on the Routerspace.

OSINT

A Closer Look At Russian Military Railway Infrastructure

Russia has one of the biggest railway systems in the world which is hugely important to the Russian Military.

OSINT

The Value Of The Intelligence Cycle To Information Security Researchers

Learn about the intelligence cycle through practical examples, and how it can be applied to OSINT investigations

TECHNICAL

Windows Post Exploitation - Enabling WinRM

Learn how to access a vulnerable application, even if the initial application vulnerability is patched.

TECHNICAL

HTB Undetected Walkthrough

A technical walkthrough of the HackTheBox undetected challenge, by Andy From Italy.

CYBERSEC

Power Grid Vulnerabilities

Smart grid technology presents an opportunity for threat actors seeking to disrupt the power grid.

TECHNICAL

HTB Pandora Walkthrough

A technical walkthrough of the HackTheBox Pandora challenge, by HTB Legend Andy From Italy.

TECHNICAL

CVE-2022-24112 Exploiting HTTP Request Smuggling

Header smuggling is the art of running commands on the target server by playing around with HTTP headers.

INFOSEC

A Criminal Vulnerability Disclosure

The story of German hacker Lilith Wittmann who ran into trouble with the law after finding a security vulnerability.

INFOSEC

Application Security 101

A short guide to application security aimed at newcomers to the subject.

CYBERSEC

Meet the Ransomware Gang Behind The Biggest Supply Chain Hacks

A gang nicknamed Cl0p, FIN11, and TA505 has been hacking and extorting hundreds of companies for years.

TECHNICAL

HTB Paper Walkthrough

A technical walkthrough of the HackTheBox Paper challenge, by Andy From Italy.

CYBERSEC

Why You Should Invest In Cybersecurity Startups

A cybersecurity startup founder explains why you should invest in cybersecurity startups.

INFOSEC

How To Market Your Cyber Startup

One of the often-neglected sides of the tech industry is understanding how to market yourself and your product.

TECHNICAL

HTB Unicode Walkthrough

A technical walkthrough of the HackTheBox Unicode challenge, by Andy From Italy.

CYBERSEC

Start Your Pentest In The Right Way

To increase your chances of success and keep yourself out of trouble, hosting a kickoff meeting before starting a pen test is essential.

INFOSEC

User Account Control Bypass For Windows 11 & Windows Server 2022

Security researcher Patrick Hoogeveen cracks open Windows UAC to bypass it for your viewing pleasure.

INFOSEC

The Zero Trust Handbook (1)

A high level introduction to the zero trust cybersecurity movement explained in layman’s terms.

TECHNICAL

HTB Backdoor Walkthrough

Andy From Italy is back with another solid HackTheBox technical write up, this time he heads for the BACKDOOR.

Breaking Reverse Proxy Parser Logic

Security researcher Blake Jacobs teaches us how to break reverse proxy parser logic to redirect server traffic.

How Copy Pasting Can Get You Hacked

Ctrl C + Ctrl V is an unsung hero to every programmer and sysadmin out there and an elementary and universal keyboard combination integrated into the core of every OS ecosystem. I have used it as second nature, and you have too. Nothing to see here? Or so it seems. An

OSINT

OSINT Bites 1 - Architecture

Part 1 of Luca Ziesler’s OSINT Bites Collection focuses on architecture and the role it plays in geolocation.

TECHNICAL

Funny Deadly Linux Strings Part 2

Security researcher Patrick Hoogeveen returns with part two of his series on deadly little Linux strings.