Knowledge Hub

Practitioner-grade cybersecurity content

Technical playbooks, war stories, and how-to-think guides — written by practitioners, anchored to the Indian context.

Want structured, step-by-step learning instead? Explore the Academy (guided courses) or the AI security hub.

Latest articles

Most recent practitioner playbooks across every track. Filter by topic in the sidebar, or use search.

Module 9 · Binary Authorization

Binary Authorization = admission controller for GKE/Cloud Run. Only deploy images that pass policy. How it works Build pipeline produces image +…

Apr 27, 2026 · 1 min read

Academy

Module 8 · GKE Autopilot Security

GKE Autopilot = Google manages nodes; user manages workloads. Security defaults are enforced; less flexibility. What’s enforced Workload Identity Shielded GKE Nodes…

Apr 27, 2026 · 1 min read

Academy

Module 7 · Cloud Armor for WAF & DDoS

Cloud Armor = Google’s edge security. WAF + DDoS + bot mitigation. Layers Standard — basic L3/4 DDoS, included with HTTP(S) load…

Apr 27, 2026 · 1 min read

Academy

Module 6 · Google Secret Manager

GCP’s native secrets store. Simpler than Vault; sufficient for most. Features Versioned secrets (latest, specific version) IAM-scoped access Replication policies (auto /…

Apr 27, 2026 · 1 min read

Academy

Module 5 · BigQuery Security

BigQuery is the most-used data warehouse for Indian fintech. Security model is rich; most teams use 30%. Access patterns Dataset-level — coarse;…

Apr 27, 2026 · 1 min read

Academy

Module 4 · VPC Service Controls

VPC Service Controls = GCP’s data-exfiltration defence. Define a perimeter; data can’t leave it even with valid credentials. The model Perimeter wraps…

Apr 27, 2026 · 1 min read

Academy

Module 3 · GCP Organisation Hierarchy

GCP’s hierarchy is the foundation of multi-project security. Levels Organisation — top; tied to your Google Workspace / Cloud Identity domain Folders…

Apr 27, 2026 · 1 min read

Academy

Module 13 · Azure Incident Response

Module 7 (Blue Team) covered IR generally. This is the Azure-specific actions. Compromised account playbook Disable user account in Entra ID Revoke…

Apr 27, 2026 · 1 min read

Academy

Module 12 · Azure Cost-Aware Security

Azure security tools have free and paid tiers. Wrong choice = either insecure or unnecessarily expensive. The price-conscious choices Defender for Cloud…

Apr 27, 2026 · 1 min read

Academy

Module 11 · Microsoft Purview

Purview is Microsoft’s data governance + protection brand. Components Information Protection — sensitivity labels for documents/emails; classification + encryption DLP — Data…

Apr 27, 2026 · 1 min read

← Newer 1 … 38 39 40 41 42 … 91 Older →