Knowledge Hub

Practitioner-grade cybersecurity content

Technical playbooks, war stories, and how-to-think guides — written by practitioners, anchored to the Indian context.

Want structured, step-by-step learning instead? Explore the Academy (guided courses) or the AI security hub.

Latest articles

Most recent practitioner playbooks across every track. Filter by topic in the sidebar, or use search.

Module 17 · Multi-Cloud Identity Federation Attack Surface

Why this module exists. Indian enterprises in 2026 are multi-cloud. Workloads on AWS, identity in Entra ID, data lakes in GCP, kubernetes…

Apr 27, 2026 · 4 min read

Academy

Module 16 · Cost-Based Denial of Service

Why this module exists. Modern cloud architectures auto-scale. Auto-scaling means an attacker who can drive load can drive your bill — to…

Apr 27, 2026 · 4 min read

Academy

Module 15 · CloudTrail Forensics — Reading the Audit Log

Why this module exists. If you can’t read CloudTrail, you can’t do cloud incident response. CloudTrail is to AWS what Windows Event…

Apr 27, 2026 · 4 min read

Academy

Module 13 · Cloud SSRF & IMDS — IMDSv2 and Beyond

Why this module exists. Capital One. Capital One. Capital One. Every cloud security training references it because the chain is iconic: external…

Apr 27, 2026 · 4 min read

Academy

Module 12 · AWS Lambda & Serverless Attack Surface

Why this module exists. Serverless is “no server to harden” — and a new attack surface that most security teams don’t review…

Apr 27, 2026 · 4 min read

Academy

Module 11 · Service Mesh Security — Istio, Linkerd, mTLS

Why this module exists. “We added Istio and now we have zero trust.” No, you don’t. Service mesh adds powerful primitives —…

Apr 27, 2026 · 3 min read

Academy

Module 10 · Container Escape — From Pod to Node

Why this module exists. Containers are isolation, not security. The Linux kernel boundary between container and host has historically had escape paths…

Apr 27, 2026 · 3 min read

Academy

Module 9 · Azure RBAC & Privilege Escalation Paths

Why this module exists. Azure has two parallel permission systems — RBAC for management plane (resources), Entra ID roles for identity plane.…

Apr 27, 2026 · 3 min read

Academy

Module 8 · GCP IAM & Workload Identity Federation

Why this module exists. Every Indian SaaS that adopted GCP after 2022 inherited an IAM model fundamentally different from AWS. The pieces…

Apr 27, 2026 · 3 min read

Academy

Module 17 · Read-Only Domain Controllers (RODCs) — Attack & Defence

Why this module exists. RODCs were Microsoft’s 2008 answer to “we need a DC at a branch office, but the branch office…

Apr 27, 2026 · 4 min read

← Newer 1 … 51 52 53 54 55 … 91 Older →