Blog
Stay updated with the latest offensive security news, knowledge, and resources.
Featured
Explore common pitfalls in Java and C# reflection practices—understand how insecure use of reflection can expose applications to vulnerabilities like code injection, unauthorized access, and bypassed security controls, and learn key strategies to harden your code.
Latest Resources
Most security programs fail because they focus only on reactive detection while sidelining proactive measures. Roger Allen, Sr. Director, Global Head of Detection & Response at Sprinklr, explains why vendor telemetry gets you 90% of the way there.
In today's episode, Casey addresses why continuous pentesting is a must for dynamic environments.
Stay aware of attacker activity with Sprocket’s Activity Feed. Get real-time updates, context, and faster response time from CPT.
What if you could predict which vulnerabilities threat actors will weaponize months before CISA adds them to their Known Exploited Vulnerabilities list? Andrew Grealy, Head of Armis Labs, has built exactly that capability, providing organizations with threat intelligence that arrives 3-12 months ahead of traditional indicators.
In today's episode, Casey addresses how to build an offensive security program from scratch.
Brent White, Sr. Principal Security Consultant & Covert Entry Specialist at Dark Wolf Solutions, offers Casey his approach to physical security testing that goes far beyond lock picking, rooted in understanding human psychology and building systematic infiltration strategies.