Jun 20, 2025 · 3 min read · Scenario: You are part of the Threat Intelligence team in the SOC (Security Operations Center). An executable file has been discovered on a colleague's computer, and it's suspected to be linked to a Command and Control (C2) server, indicating a poten...
Join discussion
May 11, 2025 · 9 min read · When I started software development in 2020 I had a very different view on how software was designed and developed. It was heavily influenced by what I learnt in my under graduate course. Dataflow diagrams, High-level design diagrams, low-level diagr...
Join discussion
Nov 13, 2024 · 6 min read · Ensuring the security of applications is a complex and ongoing process that requires a comprehensive understanding of potential threats and vulnerabilities. One effective approach to tackle this challenge is through the use of pasta threat modeling, ...
Join discussionAug 13, 2024 · 4 min read · In this blog we have structured this into three parts The Act, The Analysis and The Detection and go through each part in very simplistic way to understand and approach them. The Act talks about Modern authentication abuse using AITM The Analysis t...
Join discussion
Jul 27, 2024 · 2 min read · El panorama de amenazas evoluciona mas rapido que las organizaciones, por lo cual se debe invertir en medidas sólidas de ciberseguridad para preservar sus activos. Trasladar esta necesidad de inversion a una junta directiva es desafiante y demostrar ...
Join discussion
May 3, 2024 · 3 min read · In a perfect world, we can secure everything from everything. But since we’re not in a perfect world, to effectively manage risks, organizations must be well aware of their risk landscape and where to put in remediation efforts to limit their exposur...
Join discussion
Mar 13, 2024 · 7 min read · Threat modeling is the process of using hypothetical scenarios, system diagrams, and testing to help secure systems and data. By identifying vulnerabilities, helping with risk assessment, and suggesting corrective action, threat modeling helps improv...
Join discussion
Nov 11, 2023 · 3 min read · My quest for advanced knowledge recently led me to Adam Shostack’s book, "Threat Modeling." Approaching the subject with both excitement and curiosity, I found this book to be an exceptional resource. Not only did it provide a comprehensive overview ...
Join discussion
Sep 4, 2023 · 2 min read · The Container Security Ecosystem The diagram above encapsulates the key components and measures in container security: Attack Surfaces Images: The foundational blueprints for your containers. Image Registries: Repositories for storing these bluepr...
Join discussionAug 22, 2023 · 3 min read · Aribot, powered by Ayurak AI, stands as an exceptional solution that provides invaluable security and compliance insights for your code supply chain and cloud infrastructure. This powerful tool is designed to assess your systems against industry stan...
Join discussion