An overview of application security fundamentals, including secure coding, testing, authentication, and updates to protect software from threats.
A guide to navigating different netcat versions (OpenBSD, Traditional, Ncat) for CTFs and reverse shells, highlighting key syntax differences and pitfalls.
A penetration tester demonstrates AI security risks by having an AI generate stealthy malicious code for a proof-of-concept backdoor.
A framework for evaluating work based on Expertise, Purpose, Fun, and Difficulty, with examples from Kubernetes security.
Explains Kubernetes Golden Tickets, a security flaw allowing attackers to forge admin certificates and tokens, with scripted exploitation steps.
A practical, hands-on guide to SSH port forwarding, focusing on useful commands and techniques for network traversal and security testing.
Explores the security risks of SSH-Agent forwarding, demonstrating how attackers can abuse it for lateral movement in compromised networks.
A cybersecurity professional shares their journey and practical advice on landing a role on Google's Red Team, based on their own application experience.
A tutorial on using Mitmproxy and Python for Man-in-the-Middle (MITM) traffic interception, modification, and analysis.
A mind map summarizing the red teaming methodology and techniques from 'The Hacker Playbook 3' for cybersecurity professionals.
A guide on using the ELK Stack (Elasticsearch, Logstash, Kibana) to analyze and triage large-scale Nmap scan results for penetration testing and offensive security.
GoScan v2 is an interactive network scanner built in Go, automating and abstracting nmap for penetration testing and CTFs.
A developer introduces GoScan, a network scanner tool written in Go, and explains how learning Go led to its creation and features like historical port tracking.
Needle v1.0.0 released with a new native Objective-C agent, adding iOS 10 support and replacing old dependencies.
Needle V0.0.4 released with iOS/OS X support, new security modules, and bug fixes ahead of OWASP AppSec USA 2016.
An update on the iOS security testing tool Needle, including upcoming conference talks and a hands-on exploitation workshop.
An introduction to Needle, an open-source modular framework for conducting security assessments of iOS applications.
Needle is an open-source modular framework for streamlining security assessments of iOS applications, similar to drozer for Android.
A review of the book 'Learning Pentesting for Android Devices,' covering mobile security, reverse engineering, and network forensics for security professionals.
