Get a demo
    What is SOAR? A complete guide to Security Orchestration, Automation and Response
    What is SOAR? A complete guide to Security Orchest...

    SOAR—a Security Orchestration, Automation and Response system—may be what your cybersecurity...
    Detecting Conti ransomware – The successor of infamous Ryuk
    Detecting Conti ransomware – The successor of infa...

    Conti ransomware first observed in May 2020 is widely believed to be the successor to Wizard...
    Detecting exploitation of zero-day CVE-2021-40444 in Microsoft MSHTML
    Detecting exploitation of zero-day CVE-2021-40444 ...

    On September 7, 2021, Microsoft released an advisory on a zero-day (CVE-2021-40444) vulnerability...
    How to detect stealthy Cobalt Strike activity in your enterprise
    How to detect stealthy Cobalt Strike activity in y...

    Cobalt Strike, first released in 2012, is a commercial adversary simulation tool and is popular...
    Accelerate detection and response with MITRE ATT&CK®
    Accelerate detection and response with MITRE ATT&C...

    Cyberattacks are getting increasingly sophisticated, and attackers can circumvent even the best...
    Detecting PetitPotam – a relay attack that can compromise your domain without any authentication
    Detecting PetitPotam – a relay attack that can com...

    On July 19, 2021, security researcher Lionel Gilles released technical details and a PoC tool for a...
    Preparing your defenses against the terror of PrintNightmare
    Preparing your defenses against the terror of Prin...

    On Patch Tuesday for June 2021, Microsoft fixed a Print Spooler vulnerability CVE-2021-1675 in...
    Detecting FiveHands ransomware at different stages of the kill chain
    Detecting FiveHands ransomware at different stages...

    On May 6, 2021, CISA released a report about a new ransomware variant dubbed FiveHands, which was...
    There’s a new ransomware in town: Detecting Egregor using LogPoint
    There’s a new ransomware in town: Detecting Egrego...

    This blog is about detecting Egregor ransomware. Egregor is the successor to Maze and targets large...
    Hunting for PsExec artifacts in your enterprise
    Hunting for PsExec artifacts in your enterprise

    How to hunt PsExec activity and detecting successful exploitation of a newly discovered local...
    What is ERP Security and Why Does it Matter?
    What is ERP Security and Why Does it Matter?

    Understanding ERP security: Protect your business. Discover common vulnerabilities and the best...
    Detecting Exploitation of chainable zero-days vulnerabilities in Microsoft Exchange server
    Detecting Exploitation of chainable zero-days vuln...

    Emergency security updates have been released for Microsoft Exchange Server. Learn how to detect...