Early Lessons from the Capital One Data Breach
As more details about the Capital One breach are released in court filings and media reporting, we can start to look at where controls failed to »
Stratum performs an ever-increasing number of AWS security assessments for our customers from large to small. These deep-dive assessments help identify deficiencies within the customer's AWS »
As more details about the Capital One breach are released in court filings and media reporting, we can start to look at where controls failed to »
Use of DNS infrastructure is a staple of blind application testing and data exfiltration. Both of these scenarios are applicable in most pentest engagements, but building »
Proof of Concept (PoC) Date: 09/04/2018 Exploit Author: Jonathan Gaines Vendor Homepage: https://www.tridium.com/ Version: Affects Tridium Niagara AX Versions: 3.8 »
This is Part 7 of a multi-part series of posts on how we securely ran ThreatSim in AWS for 5 years and did right by our »