Knowledge Hub

Practitioner-grade cybersecurity content

Technical playbooks, war stories, and how-to-think guides — written by practitioners, anchored to the Indian context.

Want structured, step-by-step learning instead? Explore the Academy (guided courses) or the AI security hub.

Latest articles

Most recent practitioner playbooks across every track. Filter by topic in the sidebar, or use search.

News

ICMR India 815 Million Records Breach 2023 — How a COVID Test Database Became the Largest Indian Data Leak: Full Analysis

The Indian Council of Medical Research COVID-19 test database — containing names, Aadhaar numbers, passport details, and contact information for 815 million…

Apr 24, 2026 · 15 min read
News

MGM Resorts Hack September 2023 — How a 10-Minute Phone Call to the Help Desk Cost $100M: Scattered Spider Anatomy

A ten-minute social-engineering phone call to MGM's help desk reset an employee password without verification, giving Scattered Spider the foothold for a…

Apr 23, 2026 · 15 min read
Academy

Module 10 · Multi-Cloud — The Complexity Tax

Per-cloud skill, divergent defaults, N × CSPM. Multi-cloud without investment = weaker overall security.

Apr 22, 2026 · 3 min read
Academy

Module 9 · Cloud Detection — Different Telemetry, Different Rules

CloudTrail, Activity Log, Audit Log. Identity-first detection. GuardDuty/Defender/SCC. Maturity model.

Apr 22, 2026 · 3 min read
Academy

Module 8 · Public Data Stores — The Classic

Public S3, open GCS, anonymous Azure Blob. Continues in 2026 despite a decade of awareness.

Apr 22, 2026 · 3 min read
Academy

Module 7 · Cloud Supply Chain — CI to Production

Codecov, CircleCI, SolarWinds patterns in cloud. OIDC federation, least-priv deploy roles, pinned artifacts.

Apr 22, 2026 · 3 min read
Academy

Module 6 · Serverless — New Surface, Not Smaller Surface

Lambda role credential theft, event source injection, dep vulns, supply chain. Serverless shifts attack surface.

Apr 22, 2026 · 3 min read
Academy

Module 5 · Kubernetes — The Platform That Multiplies Attack Surface

Pod → node → cluster, service account tokens, RBAC paths, exposed kubelet/etcd. kube-hunter, peirates.

Apr 22, 2026 · 3 min read
Academy

Module 4 · Cross-Account Trust Attacks

Overly broad Principal, confused deputy, External ID, Azure Lighthouse. MSSP compromise cascades.

Apr 22, 2026 · 3 min read
Academy

Module 3 · Metadata Endpoints — Still the Killer Chain

169.254.169.254, Capital One, IMDSv1 vs v2, container metadata, K8s service accounts. SSRF → cloud takeover.

Apr 22, 2026 · 3 min read
1 69 70 71 72 73 91