Cybersecurity

Cybersecurity is everywhere right now. Continue reading on Medium »

The Brute-Force Block That Reset Itself Every Time I Logged In Continue reading on Medium »

I requested a URL that didn’t exist. The server handed me an access token, a refresh token, and internal monitoring credentials. Bug… Continue reading on Medium

The job market this year is brutal for generalists but incredibly rewarding for specialists who hold the right credentials. If you want to… Continue reading on

As a developer, I've spent a lot of time thinking about how we handle file sharing — and one thing...

 Lab Difficulty: Beginner — Estimated Time: 60–90 minutes Continue reading on InfoSec Write-ups »

Introducing Hunt Forward — the practice platform built for threat hunters who want real experience, not just another badge. Continue reading on InfoSec Write-up

Introducing Hunt Forward — the practice platform built for threat hunters who want real experience, not just another badge. Continue reading on InfoSec Write-up

Why This Room Is Different Continue reading on Medium »

Linux is one of the most widely used operating systems in cybersecurity. Continue reading on Medium »

Research suggests security specialists around the globe are unhappy, but there is hope.

Ketika sebuah proyek sederhana mengubah gelang QR menjadi RFID dengan transmisi LoRa, pertanyaan tentang keamanan data menjadi tidak bisa… Continue reading on M

Avant de comprendre comment un réseau peut être attaqué à la couche 2, il faut comprendre pourquoi ARP a été conçu ainsi — et ce que cette… Continue reading on

He’s the Engineer Who Fights Bots for a Living. When He Panics, We Should Pay Attention. Continue reading on Predict »

Why Moving Beyond Passwords Is a Leadership Issue, Not Just an IT One Continue reading on Medium »

​The modern cyber-defense landscape is fundamentally flawed due to its reactive nature. Conventional Security Operations Centers (SOCs)… Continue reading on Med

XSS, CSRF, OAuth 2.0, JWTs, the BFF Pattern, and are you ready for Mythos? Continue reading on Medium »

XSS, CSRF, OAuth 2.0, JWTs, the BFF Pattern, and are you ready for Mythos? Continue reading on Medium »

A few days ago, I wrote about what Hong Kong’s new Protection of Critical Infrastructure (Computer System) Bill (CI Bill) means for your… Continue reading on Me

Supply chain attacks have emerged as a primary threat vector in modern cybersecurity, not because they rely on entirely new exploitation… Continue reading on Me

# The Basic Definitions Continue reading on Medium »

Comments

Cloud computing offers “immense benefits — scalability, flexibility, cost-efficiency,” but it also introduces new cybersecurity challenges… Continue reading on

By Roman Zuniga Continue reading on Medium »

Free Link  Continue reading on InfoSec Write-ups »

Social Engineering: The Most Powerful Hacking Technique ‎ ‎Why Hackers Don’t Need to Break In—They Just Ask ‎ ‎Let me tell you something… Continue reading on Me

O Coin needs two kinds of truth in code: (1) local water price in each fiat lane where we can observe it, and (2) a connected graph of cross-country references

How an unauthenticated cid parameter exposed complete databases — what went wrong, how it was fixed, and how to avoid it. Continue reading on Medium »

A year of paste-and-run evolution, the disclosure paradox, and why behavioral chain detection potentially survives the arms race Continue reading on Medium »

By cyber_public_school | Cyber Security Researcher Continue reading on Medium »

Introduction Hello everyone! 🚀 In this post, we are diving deep into Midnight, the...

You think you found an SSRF. But how do you prove the request came from the server and not your browser? And once confirmed, how do you… Continue reading on Med

R0-2: 100% deterministic R3: carry breaks control (→22%) R4: nonce enters R6-7: 26 trackable channels R8:  ALL 26 destroyed — 17× drop… Continue reading on Med

Sharpening Both Sides: When AI Security Fixes Create New Bugs Continue reading on Medium »

Stop hoarding tools. Start developing the one skill that actually makes you dangerous. Continue reading on Medium »

Trying to live anonymously in 2026 isn’t paranoia. It’s a full-time job — and you’re probably already losing. Continue reading on Medium »

1Password for Safari users have been warned that they must update their browser before May 24, or app security improvements will no longer be available.

Most security leaders believe they have coverage. Continue reading on Medium »

The security community has a copy-paste problem. AI is making it worse. And the job market is about to make it matter. Continue reading on Medium »

WHAT IS CROSS SITE SCRIPTING?? Continue reading on Medium »

Yerel ağın (LAN) tüm sırlarını çözdük; verinin mahalle içindeki o mikroskobik el sıkışmalarını ve dijital zırhlanma süreçlerini en ince… Continue reading on Med

Most of us treat the internet like magic. You click a link, and a millisecond later, a cat video appears. Continue reading on Medium »

Most identity and access management (IAM) programmes fail quietly. They pass audits, hit delivery milestones, and implement modern tooling… Continue reading on

Separating Hollywood fiction from technical fact — because understanding the dark web matters more than fearing it. Every time "dark web"… Continue reading on M

How MemoraEU Cannot Read Your Memories — Even If We Wanted To Zero-knowledge architecture...

I’ve worked on a lot of projects over the years, and some used HttpOnly cookies for auth (access tokens, refresh tokens… let’s be honest… Continue reading on Me

I’ve worked on a lot of projects over the years, and some used HttpOnly cookies for auth (access tokens, refresh tokens… let’s be honest… Continue reading on Me

How to use a LLMNR Poisoning to steal hashes using SMB Relay attacks Continue reading on Medium »