Coaching Tiger, Hidden Dragon: The Art of Coaching the Matrix for Fun and Profit
How can we coach the machines to learn cybersecurity knowledge from humans?
Threat, Research, and Solution in Cybersecurity Realms
Get the email newsletter and unlock access to members-only content and updates
Get started with our best stories
Exploiting Digital Signatures on PDF Documents
In this article, I try to discuss in more detail the types of attacks against digital signatures on PDF documents as discussed by researchers at the Ruhr University in Germany, where the vulnerability classes were discovered and first published by them.
Understanding the Diverse Sources and Platforms of Threat Intelligence
We examine the different sources of threat information and the type of information which can be obtained from each. We also discuss how leveraging multiple sources for threat intelligence can improve cyber resilience, and help protect against potential threats
Automated Suricata-to-ATT&CK Mapper using Machine Learning
Machine learning algorithms can be trained to recognize patterns in the data and make accurate predictions about the appropriate mapping of Suricata rules to MITRE ATT&CK tactics and techniques
Binary Analysis With RetDec and SYNOPSYS Code-DX
We’ll look at what the decompiled code looks like, and then, we’ll try to submit the decompiled code into Synopsis Code Dx®
Jenkins + Gitlab + Sonarqube + Maven Integration: DevOps Configuration
This article will discuss about integration of Jenkins + Gitlab + SonarQube executing DevSecOps for a Vulnerable Java Repository
Simple PDF Digital Signature Validation
We are discussing in this blog post a very simple example of digital signature validation within a PDF file. We hope that this simple example will be enough to provide a starting point for understanding how validation works, and also how digital signatures in PDF work.
Exploiting Digital Signatures on PDF Documents
In this article, I try to discuss in more detail the types of attacks against digital signatures on PDF documents as discussed by researchers at the Ruhr University in Germany, where the vulnerability classes were discovered and first published by them.
Streamlining Suricata / Snort Signature Development with Dalton
Developed by Secureworks, Dalton provides an intuitive web-based interface to configure and run IDS engines with user-provided packet captures, rulesets (pre-defined or custom), and configuration files
Threat Hunting Series: Malware Analysis Tools
In this hands-on learning series, you will gain a thorough understanding of threat hunting through malware analysis. The series start with an introduction to various tools used by security professionals, and then going through exploration of how to dissect and understand malicious software attacks
Understanding the Diverse Sources and Platforms of Threat Intelligence
We examine the different sources of threat information and the type of information which can be obtained from each. We also discuss how leveraging multiple sources for threat intelligence can improve cyber resilience, and help protect against potential threats
Automated Suricata-to-ATT&CK Mapper using Machine Learning
Machine learning algorithms can be trained to recognize patterns in the data and make accurate predictions about the appropriate mapping of Suricata rules to MITRE ATT&CK tactics and techniques