Collaborate Disseminate
As I mentioned in the recent Roadmap Update blog post, we are in the process of expanding the Cobalt Strike development team and ramping up our research activities so that we can release more tools outside of the core product release schedule. We’re also acutely aware of Cobalt Strike’s limitations when it comes to EDR […]
Cobalt Strike 4.6.1 is now available. This is an out of band update to fix a few issues that were discovered in the 4.6 release that were reported to be impacting users and for which there was no workaround. This does not affect the 4.7 release, which is still on track to ship this summer. […]
With the widespread adoption of emulators, almost anyone can start playing video games from bygone eras. Some systems are even capable of supporting homebrew games, with several having active communities …read more Continue reading Reverse Engineering the SEGA Mega Drive
At their core, package repositories sound like a dream: with a simple command one gains access to countless pieces of software, libraries and more to make using an operating system …read more Continue reading The Dark Side Of Package Repositories: Ownership Drama And Malware
Meet Alice and Bob
Alice and Bob work for an exciting data analytics startup that is disrupting the healthcare tech space. You might have heard their names as they are well known in the security industry for building apps that are secure by design. As … Continue reading Application Security for builders and creators
There are a lot of things that you probably are unfamiliar with when it comes to CI/CD and the operating protocols that go along with it. One of the first things that you are going to need to know is that CI/CD stands for Continuous Integration and Con… Continue reading Everything You Need to Know About CI/CD and Security
An illustration of transitive and deeply connected software supply chains
The U.S. was caught off guard by foreign interference in the 2016 election. Given the powerful role of social media in political contests, understanding the Russian efforts was c… Continue reading A Month of Reckoning for SaaS software creators and consumers
SUNBURST SolarWinds BackDoor : Crime Scene Forensics Part 2 (continued)
First, let me be clear that I have no insider knowledge. This is my best guess at what occurred, based on publicly available information
If you’ve arrived to this post, I’d suggest… Continue reading SUNBURST SolarWinds BackDoor : Crime Scene Forensics Part 2 (continued)
One of the many things I like about working at Cequence, over and above the protection value we provide our customers, is our commitment to using modern application development tools like Kubernetes, Spark and my current favorite, React. Despite our ex… Continue reading A Modern Development Stack Makes Work More Fun
DevSecOps with Bitbucket
This article was originally published at ShiftLeft Blog.
In my inaugural post on DevSecOps with GitHub, I made an assertion that achieving good productivity is a continuous journey and a shared responsibility. While technology … Continue reading DevSecOps with Atlassian Bitbucket