(SIEM) Advanced Detection Engineering
Introduction I was going through the SANS material on detection engineering from multiple of their courses and I wanted to make a practical ready …
Read morePosts
(AppSec) End-to-End API Security Lifecycle
Introduction In today’s cloud-native world, APIs are the backbone of digital ecosystems connecting microservices, external partners, and end-users …
Read more(DNS Security) – Building a Resilient DNS Infrastructure
Introduction Think of DNS like the Internet’s phone book: it turns names you understand into addresses computers use. In this guide, we’ll walk …
Read more(Threat Model) - STRIDE Threat Modelling - In-Depth Practical
Threat Modeling Isn’t Just for Paranoids: Getting Real with STRIDE Ever pushed code feeling pretty darn good about it, only to have that sinking …
Read more(ASM) Decision Tree to Identify Potential/Confirmed Abandoned/Unmaintained External Applications
Maintaining a clean and secure application inventory is critical for any organization. Over time, however, many web applications become outdated or …
Read more(ASM) Free/Open-Source External ASM Toolkit
Introduction In today’s security landscape, Attack Surface Management (ASM) is a cornerstone of proactive defense. Monitoring internet-facing assets, …
Read more(CTI) Threat Intelligence Information Sharing
The Imperative of Cyber Threat Intelligence Sharing In 2021, the Colonial Pipeline ransomware attack paralyzed fuel distribution across the U.S. East …
Read more(Bug-Bounty) Master XSS Hunting Methodology
Below is a straightforward, step-by-step approach to uncovering Cross-Site Scripting (XSS) vulnerabilities. The focus here is on the methodology …
Read more(Bug-Bounty) How to Know You are Ready for Full-Time Bug Bounty
If you’ve been flirting with the idea of turning your bug bounty side hustle into a full-time career, it’s important to be aware that there’s far more …
Read more(SIEM) SIEM Query Knowledgebase Document Template
Why I Created a SIEM Query Template In today’s fast-paced cybersecurity environment, managing SIEM queries effectively is paramount for timely …
Read more(CTI) Navigating the R.O.A.D. from Threat Intelligence to Detection Rules
Overview of R.O.A.D. R.O.A.D. stands for: Raw Intelligence Gathering Organization & Analysis Actionable Detection Deployment & Refinement When …
Read more(VAPT) JWT Pentest Checklist
Overview In this blog post, I am sharing a detailed JWT Security Testing Checklist document I have created and found immensely valuable for …
Read more(CTI) Dead Drops: Threat Actor Perspective
Introduction Dead Drops are an interesting mix of art, technology, and espionage-inspired tactics. They started as a public art project but have …
Read more(CTI) - Bringing External and Internal Intel Data Together
Effective cyber threat intelligence isn’t just about collecting random feeds or logging bits of data—it’s about having complete coverage. By gathering …
Read more(VM/ASM) - GAP comparision In Traditional VM/ASM
In today’s rapidly evolving threat landscape, traditional vulnerability management (VM) practices face significant limitations, creating gaps that …
Read more(VM) - Mind Your Vulnerability Gaps: Risk-based VM Approach
Introduction: Why is Vulnerability Management Important? In today’s dynamic cybersecurity landscape, vulnerabilities emerge from various sources, …
Read more(CTI) - CTI Maturity Model
Introduction In this post, we’ll explore a Cyber Threat Intelligence (CTI) Maturity Model, designed to help organizations systematically enhance their …
Read more(CTI) - How to Build Cyber Threat Intelligence Division For Your Organisation
Establishing a Cyber Threat Intelligence (CTI) division involves a structured approach encompassing planning, designing, and optimizing processes to …
Read more(CTI) - VIP Monitoring in Threat Intel - Part 3
To help implement and evaluate your VIP Monitoring Program effectively, access the comprehensive checklist provided in the shared Google Spreadsheet. …
Read more(CTI) - VIP Monitoring in Threat Intel - Part 2
Implement an Effective VIP Monitoring Program Monitoring high-profile individuals requires a methodical and structured approach. Below are actionable …
Read more(CTI) - VIP Monitoring in Threat Intel - Part 1
Understanding VIP Monitoring in Threat Intelligence What is VIP Monitoring? VIP Monitoring involves closely observing the digital assets and personal …
Read more