Knowledge Hub

Practitioner-grade cybersecurity content

Technical playbooks, war stories, and how-to-think guides — written by practitioners, anchored to the Indian context.

Want structured, step-by-step learning instead? Explore the Academy (guided courses) or the AI security hub.

Latest articles

Most recent practitioner playbooks across every track. Filter by topic in the sidebar, or use search.

Module 11 · Red Team in Cloud

Cloud red teaming is different from AD. No NT hashes; tokens. No Kerberos; OAuth/STS. Different tools, different OPSEC. The cloud kill chain…

Apr 27, 2026 · 1 min read

Academy

Module 10 · Red Team in AD

The complete red-team AD chain. Modules 8-17 in AD track covered individual techniques; this is operator playbook. Path planning Initial access (phish,…

Apr 27, 2026 · 1 min read

Academy

Module 8 · Persistence Techniques

MITRE ATT&CK lists 30+ persistence techniques. The 10 most-used cover 80% of real-world cases. Top techniques Run keys — HKCU/HKLM\Software\Microsoft\Windows\CurrentVersion\Run Services —…

Apr 27, 2026 · 1 min read

Academy

Module 7 · Red Team Payload Development

Defender perspective on red-team payload development. Modern AV/EDR catches commodity payloads; serious red teams build custom. Layers of evasion Loader — small…

Apr 27, 2026 · 1 min read

Academy

Module 6 · Red Team — External Recon

Red team engagements start with weeks of recon before any technical action. Quality of recon determines success of later phases. Reconnaissance phases…

Apr 27, 2026 · 1 min read

Academy

Module 15 · Mobile Pentest Reporting

OWASP MASVS (Mobile Application Security Verification Standard) is the reporting baseline. MASTG (Testing Guide) is the methodology. MASVS verification levels L1 (Standard)…

Apr 27, 2026 · 1 min read

Academy

Module 14 · Mobile Malware Analysis Workflow

Indian users are targeted by mobile banking trojans regularly. Defenders need to understand the patterns. Common Android malware patterns Accessibility service abuse…

Apr 27, 2026 · 1 min read

Academy

Module 13 · Android Permission Model

Android 6.0+ introduced runtime permissions. Android 11+ added more restrictions. Mobile pentesters check permission patterns; defenders limit ask. The categories Normal —…

Apr 27, 2026 · 1 min read

Academy

Module 12 · Runtime Tampering Detection

Many apps add “tamper detection”: Frida hook detection, jailbreak/root detection, debugger detection. Attackers bypass them all (Module 7). Why bother? Why detection…

Apr 27, 2026 · 1 min read

Academy

Module 11 · Deep Links & URL Schemes

Deep links let other apps invoke yours. Misimplemented, they become attack vectors: open phishing pages, leak tokens, hijack flows. Two patterns Custom…

Apr 27, 2026 · 1 min read

← Newer 1 … 44 45 46 47 48 … 91 Older →