Note: Some of the information below in regard to in person or virtual talk may be subject to change as DEF CON approaches. The upcoming DEF CON... continue reading
Jul 15, 2021 5:00:00 AM |
By
Britt Kemp & Matt Keeley
After exploiting a vulnerability and getting inside a network on an engagement, we often want to show what trophies we can collect as a way of... continue reading
Everyone seems to have a podcast these days on every topic under the sun. Information security is certainly no exception – there are endless... continue reading
Today, I'm hosting a webinar on "How to Build a DevSecOps Program that Works for Developers AND Security" and hope you’ll tune in – register here. continue reading
Today, we are joining our peers in the security industry in cautioning against Section 1201 of the Digital Millennium Copyright Act (DMCA). While... continue reading
The concept of continuous security has been steadily gaining speed since the early 2000s, when compliance requirements began to mandate that... continue reading
In my last blog I wrote about the advantages and disadvantages of modern AppSec tooling and how penetration testing fits into a DevSecOps... continue reading
We recently hosted a conversation with Alex Stamos (former CSO at Facebook, co-founder of the Krebs Stamos Group, and advisor to SolarWinds),... continue reading
The US Supreme Court just handed down a 6-3 ruling narrowing the scope of the Computer Fraud and Abuse Act (CFAA). It sets a precedent that... continue reading
May 25, 2021 5:00:00 AM |
By
Claire Tills & Jason Hernandez
As we discussed in our prior post, scoping is an important precursor to a successful security test. We walked through several high-level questions... continue reading
