Blog
Stay updated with the latest offensive security news, knowledge, and resources.
Featured
Follow a vulnerability researcher’s deep dive into FFmpeg’s LADSPA plugin loader and the discovery of CVE-2025-60616 — a logic flaw in how environment variables are trusted. Learn how this vulnerability enables code execution, why fuzzing missed it, and how proper validation and process isolation can prevent similar exploits.
Latest Resources
Vulnerability scanning as a service is a solution that uses cloud-based tools to identify vulnerabilities in an organization's digital infrastructure.
Vulnerability scanning as a service is a solution that uses cloud-based tools to identify vulnerabilities in an organization's digital infrastructure.
Social engineering is a method used to manipulate people into divulging confidential information, enabling unauthorized access, or deploying malware.
In this series the service delivery team writes about an outstanding talk they saw at a conference and implementing those lessons at scale.
Ahead of the Breach Podcast sits down with Bindi Davé Deputy CISO at DigiCert, to explore the importance of establishing trust in digital communications and the impact of zero trust and AI on security practices.
A “red team” is a group of security experts within an organization, which aims to breach security measures and uncover vulnerabilities, to help the organization improve its defenses.