Knowledge Hub

Practitioner-grade cybersecurity content

Technical playbooks, war stories, and how-to-think guides — written by practitioners, anchored to the Indian context.

Want structured, step-by-step learning instead? Explore the Academy (guided courses) or the AI security hub.

Latest articles

Most recent practitioner playbooks across every track. Filter by topic in the sidebar, or use search.

Academy

Module 11 · Cross-Site Request Forgery Deep Dive

Cross-Site Request Forgery (CSRF) tricks a user’s browser into submitting authenticated actions to a trusted site. Once ubiquitous, modern browsers and frameworks…

Apr 19, 2026 · 11 min read
Academy

Module 10 · XML External Entity Injection (XXE)

XML External Entity (XXE) injection exploits XML parsers that process references to external entities. A classic vulnerability in XML-consuming applications — SOAP…

Apr 19, 2026 · 11 min read
Academy

Module 9 · Server-Side Request Forgery (SSRF)

Server-Side Request Forgery (SSRF) is a vulnerability where an attacker tricks a server into making HTTP requests on their behalf. In a…

Apr 19, 2026 · 11 min read
Academy

Module 6 · Active Directory Certificate Services Attacks

Active Directory Certificate Services (ADCS) is how Windows issues certificates — for user authentication, computer authentication, web services, VPN, code signing. It’s…

Apr 19, 2026 · 3 min read
Academy

Module 5 · Golden and Silver Tickets

Forged Kerberos tickets are the ultimate AD compromise. A Golden Ticket grants domain-wide impersonation for 10 years. A Silver Ticket grants service-specific…

Apr 19, 2026 · 3 min read
Academy

Module 4 · NTLM Relay Attacks

NTLM Relay is one of the most effective attacks against modern Windows environments — and it works even on fully-patched systems if…

Apr 19, 2026 · 3 min read
Academy

IPv6 Security — Why You Already Have IPv6 Even If You Did Not Notice

IPv6 is on by default in every modern operating system. If you only configured IPv4 ACLs, half your network is unprotected. This…

Apr 19, 2026 · 11 min read
Academy

VPN Fundamentals — IPsec, OpenVPN, WireGuard and the Math That Makes Them Work

A VPN tunnels Layer 3 (or Layer 2) traffic over an untrusted network, with confidentiality, integrity, and authentication. The three protocols you…

Apr 19, 2026 · 10 min read
Academy

Firewall and ACL Design — Stateless, Stateful, NGFW, and the Rules That Survive 5 Years

A firewall is just a structured list of "allow / deny" rules applied to traffic. Stateless ACLs filter packet by packet; stateful…

Apr 19, 2026 · 10 min read
Academy

Module 5 · Privilege Escalation Defence

Root escalation — getting from “regular user” to “root” or SYSTEM — is how most breaches turn catastrophic. A foothold becomes domain…

Apr 19, 2026 · 4 min read
1 81 82 83 84 85 91