Knowledge Hub

Practitioner-grade cybersecurity content

Technical playbooks, war stories, and how-to-think guides — written by practitioners, anchored to the Indian context.

Want structured, step-by-step learning instead? Explore the Academy (guided courses) or the AI security hub.

Latest articles

Most recent practitioner playbooks across every track. Filter by topic in the sidebar, or use search.

Hacking Tools 2026

Recon-ng — Install, Use, Optimise (2026)

Modular reconnaissance framework with workspaces, modules, and a database backend — the Metasploit of OSINT.

Apr 29, 2026 · 2 min read

Hacking Tools 2026

theHarvester — Install, Use, Optimise (2026)

OSINT email, host, and metadata gathering across search engines, PGP, Shodan, and corporate-disclosure sources.

Apr 29, 2026 · 2 min read

Hacking Tools 2026

Subfinder — Install, Use, Optimise (2026)

ProjectDiscovery's passive subdomain enumeration tool — fast, JSON-native, designed to chain into other tools.

Apr 29, 2026 · 2 min read

Hacking Tools 2026

Amass — Install, Use, Optimise (2026)

OWASP's reference subdomain discovery and asset mapping tool — passive + active reconnaissance in one binary.

Apr 29, 2026 · 2 min read

Hacking Tools 2026

Masscan — Install, Use, Optimise (2026)

The fastest internet-scale port scanner — capable of 10 million packets per second from a single host.

Apr 29, 2026 · 2 min read

Hacking Tools 2026

Nmap — Install, Use, Optimise (2026)

The de facto network discovery and port scanner — still the foundation of every external recon engagement in 2026.

Apr 29, 2026 · 2 min read

News

Snowflake & AT&T Mega-Breach 2024 — UNC5537’s 165-Org Credential-Stuffing Campaign: Technical Reconstruction

A single threat actor used credentials harvested from infostealer logs to access at least 165 Snowflake customer environments — including AT&T, Ticketmaster,…

Apr 28, 2026 · 16 min read

Academy

Module 20 · Cost as Security Signal

Cost anomaly: 10x normal compute spend overnight. Could be: new feature launched. Could be: crypto mining instance spun up by attacker. The…

Apr 27, 2026 · 1 min read

Academy

Module 19 · Cloud Audit Trail Forensics

Cloud audit logs are richer than on-prem. Every API call. Identity, source, resource, action. With CloudTrail Lake or BigQuery, queryable for years.…

Apr 27, 2026 · 1 min read

Academy

Module 18 · The Tenant-of-One Assumption

Multi-tenant cloud: same physical hardware, different tenants. Side channels exist. Cross-tenant attacks researched (Spectre/Meltdown class). Most are theoretical or patched. Some succeed.…

Apr 27, 2026 · 1 min read

← Newer 1 … 32 33 34 35 36 … 91 Older →