Rootless Containers with Podman
In modern digital infrastructure, containerization has become one of the most significant technologies, offering automation, portability, and resilience of services across cloud and on-premises environments. Containers can simplify backup processes and enhance upgrade safety while significantly reducing recovery times following system incidents or failed updates.This article provides an overview of the container technology and focuses…
ConsentFix (a.k.a. AuthCodeFix): Detecting OAuth2 Authorization Code Phishing
ConsentFix (a.k.a.AuthCodeFix) is the latest variant of the fix-type phishing attacks, initially identified by Push Security. In this technique, the…
OWASP Top 10 2025 – A Pentester’s Perspective
Every three to four years, OWASP releases a new version of arguably its most famous project, the “OWASP Top Ten”.…
Integrating Abuse Case Scenarios to Improve Authorization Testing
Introduction In many penetration testing assessments, it is common to encounter applications that support multiple user roles, such as admin,…
The Detection & Response Chronicles: Exploring Telegram Abuse
Adversaries utilizing popular messaging apps throughout different attack phases is nothing new. Telegram, in particular, has constantly been the subject…
Managing SIEM Log Collectors at Scale with Ansible and GitHub Actions – Part 1
A Security Operations Center (SOC) watches an organization’s IT systems for cyber threats 24/7. It quickly finds and fixes security…
Detection Engineering: Practicing Detection-as-Code – Tuning – Part 8
In Part 7, we showcased how we can leverage automation to continuously monitor the performance and trigger rate of our…
Something went wrong. Please refresh the page and/or try again.