VULN ALERT: F5 Big-IP appliances vulnerability - CVE-2022-1388
There’s a new vulnerability out there impacting F5 Big-IP appliances (...
Adaptive Emulation (Part 2): Execution Methods
In part 1 of my adaptive emulation blog series, we covered how small...
A Lesson from the Okta Incident: Scaling Purple Teaming for Better Controls Validation
This week, Okta shared a postmortem for its recent incident. Much has been said...
Why is SCYTHE Building a CTI Team?
Over the course of my cybersecurity career, I’ve been fortunate to work in...
Building an Internal Red Team? Go Purple first
I was chatting with a SANS STI student, Antonio Piazza, on Twitter and we...
Cybersecurity and Your Board
This is the part of every blog post where the author lists the latest breach or...
Summiting the Pyramid of Pain: The TTP Pyramid
A Special Thanks The TTP Pyramid expands David Bianco’s Pyramid of Pain. We...
Breaking Down LOLBAS Attacks With The Help Of Hunter-gatherers
A few weeks ago , while watching the Hadza: Last of the First documentary, I...
Porting the Log4J CVE PoC to SCYTHE
Over the weekend, the infosec community put together many tools for scanning...
