Latest postsWriting effective YARA rules for malware detection 20/05/2026How YARA actually works, what makes a good rule versus a noisy one, and a structured approach to writing rules that survive contact with reality.Vulnerability management – building a programme that works 20/05/2026A practical look at the vulnerability management lifecycle: discovery, prioritisation, remediation, and measuring whether it is actually working.TLS 1.3 deep dive – handshake, ciphers, and mutual TLS 20/05/2026How the TLS 1.3 handshake actually works, why it is faster and safer than 1.2, and how to deploy modern TLS (and mTLS) correctly.Supply chain risk and vulnerabilities – understanding the threat 20/05/2026How attackers target software dependencies, vendors, and build pipelines, and what defenders can do to reduce supply chain risk.OSINT fundamentals – open-source intelligence for defenders 20/05/2026What OSINT actually is, how attackers use it against your organisation, and how defenders can use the same techniques to reduce exposure.Linux privilege escalation – techniques and hardening 20/05/2026How attackers escalate from a local user shell to root on Linux: SUID, capabilities, sudo, cron, and kernel – with the hardening that stops each one.Kubernetes and container security hardening 20/05/2026A practical hardening guide for containers and Kubernetes: image supply chain, runtime, RBAC, network policy, secrets, and detection.Insider risk – detecting and preventing threats from within 20/05/2026Why insider threats are different from external attacks, the main categories to plan for, and how to detect them without surveilling your workforce.eBPF for security – kernel-level observability without the kernel module 20/05/2026What eBPF actually is, why it has transformed Linux security tooling, and how to use Falco, Tetragon, and friends safely in production.DNS tunnelling and exfiltration – how it works and how to detect it 20/05/2026Why DNS is a favourite covert channel for attackers, how DNS tunnelling actually works, and the detections that catch it without drowning in noise.