Information Security and Cybersecurity Resources for the masses

Weekly blog posts highlighting the latest information security and cybersecurity news, links to resources and tools, and the best guides to enhancing your security posture.

Latest Blog Posts

  • All
  • Dark Web
  • Application Security
  • Blue Team News
  • Third Party Risk Management
  • Security Operations
  • Artificial Intelligence
  • Machine Learning
  • Open Source Intelligence
  • In The News

An Introduction To Automating Open Source Intelligence Gathering Using Spiderfoot

SpiderFoot is a Open Source Intelligence (OSINT) tool that combines the power of many Internet API’s to gather intelligence on Names, E-mail Addresses, Domains, IP Addresses, and more.  This article will help you get setup with a local installation of SpiderFoot using Docker, guide you through the initial setup and ...

Artificial Intelligence – Limitations, Attack Vectors, and Threat Modeling

Every couple of years a new or evolving technology bring about a whole new set of buzzwords that are often misunderstood by the general public. First, we saw the advent of the “cloud”, which is still not very well understood by most. We followed that up with Machine Learning (M.L.), ...

Supply Chain Attacks Explained

With the recent news of 3CX supply chain attacks I think it’s important to understand what, exactly, a supply chain attack is, and how you and/or your organization can help to reduce the risk and impact of a supply chain attack. What Is a Supply Chain? It may seem rudimentary, ...

Blue Team News Weekly – 2023-04-23

Blue Team News (BTN) Weekly is a digest of news, articles, intelligence and reports on the latest threats and industry trends that are most relevant to information security defenders, aka the Blue Team. Get links to the most relevant information out there along with an analysis by an actual Blue [...]

Blue Team News Weekly – 2023-04-16

Blue Team News (BTN) Weekly is a digest of news, articles, intelligence and reports on the latest threats and industry trends that are most relevant to information security defenders, aka the Blue Team. You’ll receive links to the most relevant Internet connect, as well as an analysis by our Blue Team ...

Hacking and Market Forums (Updated 2023)

As an information security defender, it’s important that I understand the motivations and intentions of the threat actors that I face on a day-to-day basis. Luckily, the Internet is full of handy, dandy resources that help me observe these activities. Forums and Markets, available on both the dark web and ...

Easy GitLab Upgrading Using The Upgrade Path Tool

What Is GitLab? GitLab is web software built on the popular Git Version Control system that provides organization and control to DevOps activity. Similar to GitHub, it allows you to store and organize code, create CI/CD pipelines, as well as track issues. GitLab is a frequent source of attack by ...