Articles

DevSecOps Culture

Online media and marketing are filled with terms like DevSecOps methodology, DevSecOps model, or DevSecOps techniques. However, in order to be successful, organizations must understand that DevSecOps is first and foremost a culture. DevSecOps culture focuses on uniting the normally siloed roles of Development, Security, and Operations into a collaborative shared-responsibility paradigm. It seeks to break down barriers of finger pointing and deflection. Instead, it aims to build empathy and common goals among various disciplines within the organization.

Software Supply Chain Attacks

Attackers leverage third-party resources to perform software supply chain attacks. Learn how what these attacks look like and how to prevent them.

The Importance of Deputy CISO's in Security Teams

Having a backup to the CISO is an important part of a cybersecurity program. It ensures that critical functions are still being performed if the CISO is unavailable.

What is Ethical Hacking?

As technology continues to play an increasingly important role in our lives, ethical hacking is becoming an essential part of any organization's cybersecurity strategy, learn what it is and how to use it to your advantage.

Ethical Hacking: Skills & Training

Both technical and non-technical skills are required for ethical hacking, find out what you need to learn, and where to learn it!

Ethical Hacking: Certifications

Ethical hacking certifications are a key part of learning. Find out which certifications are popular and how to prepare for ethical hacking exams.

Ethical Hacking: Reporting Your Findings

Ethical hackers need to share the information they discover through detailed reports. Learn about the different report types, and how to construct them.

Ethical Hacking: Vulnerability Disclosure Program (VDP) Vs Bug Bounty (BB)

How does a bug bounty (BB) program compare to other vulnerability disclosure programs (VDP)? Learn how enterprises are using VDPs to help secure their applications.

Enterprise vulnerability management: Processes & tools

Enterprise vulnerability management is the systematic process of identifying, assessing, prioritizing, and mitigating vulnerabilities in an organization's digital infrastructure, applications, and systems.

Enterprise Cloud Security: Secure cloud deployments at scale

In the face of many threats, enterprises must take a comprehensive approach to cyber security to protect sensitive data and infrastructure in the cloud.

Types of CTF challenges

The evolution of CTFs has been a dynamic journey from simple text-based challenges to complex, multifaceted events that test a wide range of cybersecurity skills.

CTF platforms & practice

Capture the Flag (CTF) competitions are a popular way for cybersecurity enthusiasts, students, and professionals to test and expand their skills in a gamified environment. Over the years, several platforms have emerged that offer CTF challenges and practice environments. 

CTF strategies & techniques

Capture the Flag (CTF) has become increasingly popular in the field of cybersecurity as a training ground for aspiring ethical hackers and cybersecurity professionals. It involves a series of challenges where participants must use their technical skills and knowledge to solve problems, find hidden flags, and gain points. CTF challenges cover a wide range of topics, including web application security, binary analysis, cryptography, and more.

CTF tools

CTFs (Capture the Flag) are competitions where participants try to solve various cybersecurity challenges, such as exploiting vulnerabilities, reverse engineering, digital forensics, and cryptography, to retrieve a "flag." To assist in solving these challenges, there are numerous CTF tools available, and participants typically have a toolkit that caters to the various CTF categories.

Gaining transferable security skills with CTFs

Cybersecurity audit types explained

Learn the different types of security audits, when you should use each of them, and where to integrate audits into existing security pipelines.

Everything you need to know about Container Runtime Security

In this article you will find everything you need to know about container runtime security, including how to keep your container images secure.