Another day of Cybersecurity
When conducting a digital forensic investigation on macOS systems, understanding where to find critical artifacts and how to extract meaningful data is crucial. Unlike Linux, macOS uses unique system components and logging mechanisms that require specialized knowledge. This post highlights … Read the rest
Think of LSASS as the master key ring at a hotel. It’s supposed to be used only by authorized staff, like security or management, to access any room in case of emergencies. This key ring has copies of every room … Read the rest
PowerShell is a critical tool in any security team and IT admin’s arsenal, offering powerful scripting capabilities for automating tasks across both on-premises and cloud environments. However, its flexibility makes it an attractive target for attackers seeking to run malicious … Read the rest
Azure Blob Containers are meant to be opened…
The cloud’s capabilities, particularly security, are expanding and bringing impressive value. However, old misconfigurations still occur even in the most hardened and monitored environments, one of which is an open Azure Blob … Read the rest
Ransomware attacks grow and cripple companies, cities, and businesses. Attackers are locking people out of their networks and demanding significant payment to get back in. The case is that many organizations still pay attackers in order to get their data … Read the rest
Many times people asked me about the differences between external attack surface management, vulnerability management, and penetration testing. Mostly “What will be the and the right approach to handling security tools alongside the behavior and procedures. While many organization has … Read the rest
Threat Hunting in the Cloud differs from Legacy Threat Hunting (on-premise). Change my Mind.
This post, among many others in the “Cloud Threat Hunting” series, will take you into the Cloud Threat-Hutning and “little things” you should know. I have … Read the rest
In today’s AI landscape, software security is of paramount importance. With the increasing complexity of applications and the constant evolution of cyber threats, developers and security professionals must remain vigilant to protect sensitive data and prevent malicious attacks. As technology … Read the rest
