Is my Cloud going to Rain on me? (what is a Cloud Security Review and why do I need it?)

Nginprox - An Opensource WAF to Protect against Malicious File Uploads

A Practical Guide to SOC 2 Compliance

An Accidental SSRF Honeypot in Google Calendar

GitHub: The red-teamer’s cheat-sheet

Playing with Connected Files: a story of mysterious behavior in Windows file-system

WHY RED-TEAM?

Bypassing CrowdStrike in an enterprise production network [in 3 different ways]

When all else fails - find a 0-day

Is MIME Sniffing XSS a real thing? [The story of weird Google bug bounties]

Through the cloud – remote debugging to crack MQ

AV WARS: Fighting fire with fire [AV Bypass Technique]

Google Groups Authorization Bypass / $500 bounty

BAD RABBIT – ARE YOU VULNERABLE ?

ATM JACKPOTTING USING FILELESS MALWARE

DISTRIBUTED VERIFICATION OF SSL CERTIFICATES

FROM PUSH NOTIFICATIONS TO A BOTNET

WHO IS RESPONSIBLE FOR DDOS ATTACKING US?

CYBER THREAT INTELLIGENCE – WHO NEEDS IT?

THE ARMY OF THE HEADLESS BROWSERS