Knowledge Hub

Practitioner-grade cybersecurity content

Technical playbooks, war stories, and how-to-think guides — written by practitioners, anchored to the Indian context.

Want structured, step-by-step learning instead? Explore the Academy (guided courses) or the AI security hub.

Latest articles

Most recent practitioner playbooks across every track. Filter by topic in the sidebar, or use search.

Module 10 · Azure Key Vault

Azure Key Vault stores keys, secrets, certificates. Managed Identity integration is the win. What goes in Key Vault Keys (cryptographic; can be…

Apr 27, 2026 · 1 min read

Academy

Module 9 · Sentinel Deployment

Sentinel = Microsoft’s SIEM. Cloud-native, KQL-based, integrates with Defender suite. Architecture Log Analytics Workspace = data store Sentinel = analytics layer on…

Apr 27, 2026 · 1 min read

Academy

Module 8 · Azure Storage Security

Azure Blob Storage is the Azure equivalent of S3. Same misconfigurations, slightly different tooling. Common findings Public-access containers SAS tokens with overly…

Apr 27, 2026 · 1 min read

Academy

Module 7 · Azure Network Security

Azure has multiple network security products with overlapping but distinct purposes. The layers NSG — Layer 4 ACLs at NIC or subnet…

Apr 27, 2026 · 1 min read

Academy

Module 6 · Microsoft Defender Suite

“Microsoft Defender” is a brand covering many products. Knowing which is which saves money and improves coverage. The portfolio Defender for Endpoint…

Apr 27, 2026 · 1 min read

Academy

Module 5 · Entra ID Conditional Access

Conditional Access = Entra ID’s policy engine. The single highest-leverage security control in any Microsoft-shop enterprise. The if-then structure If [signals] then…

Apr 27, 2026 · 1 min read

Academy

Module 4 · Azure RBAC Mastery

Module 9 (Cloud track) covered privesc paths. This module is the operational guide. Scope hierarchy Management Group → Subscription → Resource Group…

Apr 27, 2026 · 1 min read

Academy

Module 14 · Crypto Compliance Mapping

Auditors ask “is your encryption FIPS 140-2/3 compliant?” Industry answers vary by sector. FIPS 140 levels Level 1 — software-only crypto module;…

Apr 27, 2026 · 1 min read

Academy

Module 13 · TLS/PKI Incidents — What Happens When Crypto Breaks

Crypto breaks rarely; when it does, it’s catastrophic. Notable incidents DigiNotar 2011 — CA compromised; rogue certs for Google. Browser distrust =…

Apr 27, 2026 · 1 min read

Academy

Module 12 · Hashing — Passwords & Integrity

“How do we hash passwords?” is the most-asked question. The answer evolved. 2026 password-hashing recommendations Argon2id — first choice; OWASP recommended bcrypt…

Apr 27, 2026 · 1 min read

← Newer 1 … 39 40 41 42 43 … 91 Older →