Practitioner-grade cybersecurity content
Technical playbooks, war stories, and how-to-think guides — written by practitioners, anchored to the Indian context.
Want structured, step-by-step learning instead? Explore the Academy (guided courses) or the AI security hub.
Latest articles
Most recent practitioner playbooks across every track. Filter by topic in the sidebar, or use search.
OWASP API Top 10 2026 Draft: What Changed, Mapped to Indian Fintech Reality
What’s in the 2026 draft OWASP API Security Top 10 — 2026 dropped as a working draft in April. The list reorganises…
NewsLinux 6.10+ LASS Mitigation: What Spectre-Era Defences Mean for Indian Hosting Providers
The new mitigation in mainline Linear Address Space Separation — LASS — landed in Linux mainline in 6.10 and matured through 6.11…
NewsCISA KEV Catalog Patterns: 5 Exploitation Categories Indian Defenders Systematically Miss
1,000 entries and counting CISA’s Known Exploited Vulnerabilities catalogue crossed the 1,000-entry mark in early 2026. The KEV is the single most…
NewsNIST FIPS 203 (ML-KEM) One Year On: Cryptographic Module Validation Reality Check
One year of FIPS 203 NIST finalised FIPS 203 — Module-Lattice-Based Key Encapsulation Mechanism, better known as ML-KEM — in August 2024.…
ComplianceDPDP Phase 2 Effective Date Locked: What Indian SaaS Must Ship by August 2026
What just shifted MeitY’s notification of Phase 2 of the DPDP Rules has locked the effective date for several previously-flagged sections. The…
AcademyModule 24 · Network Forensics — PCAP, NetFlow, Zeek
The network-forensics evidence layers Layer What it shows Full PCAP Every byte of every packet NetFlow / IPFIX / sFlow Conversation summaries…
AcademyModule 23 · Mutual TLS and Service Identity at the Network Layer
What mTLS provides Each side of the connection presents a certificate. Both verify the other’s certificate against trust chain. Traffic encrypted with…
AcademyModule 22 · IPv6 Security in Modern Networks
The IPv6 attack surface The single most common Indian enterprise issue: IPv6 enabled on endpoints / VMs by default, no explicit IPv6…
AcademyModule 21 · DNS Security — DoH, DoT, DNSSEC, Sinkholing
The classic DNS problems Plaintext queries visible to network observers. Response forgery / cache poisoning. No cryptographic authenticity. DNS used for data…
AcademyModule 20 · SD-WAN and SASE Architecture
The traditional WAN vs SD-WAN Traditional SD-WAN MPLS private circuits Internet underlay with overlay tunnels All branches → HQ → internet Local…