Practitioner-grade cybersecurity content
Technical playbooks, war stories, and how-to-think guides — written by practitioners, anchored to the Indian context.
Want structured, step-by-step learning instead? Explore the Academy (guided courses) or the AI security hub.
Latest articles
Most recent practitioner playbooks across every track. Filter by topic in the sidebar, or use search.
Module 3 · GraphQL Security
Introspection, depth/complexity attacks, aliasing brute force, mutation safety, persisted queries, subscriptions.
AcademyModule 2 · API Authentication & Authorization Patterns
JWT pitfalls, OAuth flows for APIs, session management, mTLS, RBAC vs ABAC vs ReBAC, authz testing at scale.
AcademyModule 1 · OWASP API Security Top 10 (2023)
Walk through every API risk in the 2023 OWASP API Top 10 with concrete examples and remediation patterns.
AcademyModule 5 · Intel-Driven Threat Hunting
From threat report to hunt hypothesis to SIEM query to finding. KQL/SPL examples, triage, pivoting, documentation.
AcademyModule 4 · MITRE ATT&CK in Operations
ATT&CK taxonomy, tactics and sub-techniques, Navigator for coverage mapping, detection-as-technique, D3FEND.
AcademyModule 3 · Pyramid of Pain & IOC Lifecycle
Bianco's Pyramid of Pain, IOC lifecycle, 90-day rule, TTP-focused detection priorities.
AcademyModule 2 · OSINT Collection for CTI
Search operators, Shodan, Censys, subdomain enumeration, GitHub dorking, dark-web research, tradecraft OpSec.
AcademyModule 1 · Cyber Threat Intelligence Fundamentals
Four levels of intelligence, the intelligence cycle, sources, attribution, Diamond Model, and metrics that track real value.
AcademyModule 5 · Evading Modern EDR
AMSI bypass, ETW blinding, direct syscalls, unhooking, module stomping, and the attacker-defender arms race in 2026.
AcademyModule 4 · Lateral Movement & Persistence
Pass-the-hash/ticket, WMI/WinRM, scheduled tasks, WMI subscriptions, AD golden/silver tickets, cloud persistence.