Practitioner-grade cybersecurity content
Technical playbooks, war stories, and how-to-think guides — written by practitioners, anchored to the Indian context.
Want structured, step-by-step learning instead? Explore the Academy (guided courses) or the AI security hub.
Latest articles
Most recent practitioner playbooks across every track. Filter by topic in the sidebar, or use search.
Log4Shell (CVE-2021-44228) — How a JNDI Lookup Feature in Log4j Became “the Bug of the Century”: Anatomy of the Worst Java Vulnerability
A logging library feature for JNDI lookups, intended to make config lookups easier, became the worst Java vulnerability in history when attackers…
NewsEternalBlue, WannaCry & NotPetya — How an NSA-Leaked Windows SMB Exploit Cost $10 Billion: Anatomy of 2017’s Internet-Shaking Worm
A Windows SMB vulnerability discovered and weaponised by NSA, leaked by the Shadow Brokers, and used to power WannaCry and NotPetya —…
NewsShellshock (CVE-2014-6271) — How a 25-Year-Old Bash Bug Exposed Every Unix System on the Internet: Anatomy of the Server-Side Catastrophe
A code path in Bash going back 25 years allowed environment variables to contain executable function definitions plus extra commands — turning…
NewsSpectre & Meltdown 2018 — How Speculative Execution in Every Modern CPU Created Side-Channel Attack Vectors: Anatomy & Persistent Mitigations
Three vulnerabilities affecting virtually every CPU manufactured for the previous 20 years exploited speculative execution to leak data across security boundaries —…
NewsStuxnet (2010) — How a US-Israeli Cyber Weapon with Four Zero-Days Sabotaged Iran’s Nuclear Program: The First True Cyber-Kinetic Attack
Four Windows zero-days plus stolen code-signing certificates plus deep knowledge of Siemens industrial systems plus an air-gap-bridging USB worm equals the first…
NewsEquifax Breach 2017 — How an Unpatched Apache Struts Vulnerability Cost 147M Americans Their Identities: $1.4B Settlement Analysis
A two-month-old Apache Struts patch that Equifax had not deployed allowed attackers to access internal systems and exfiltrate personally-identifying data on 147…
NewsProxyLogon & Hafnium 2021 — How Four Microsoft Exchange Zero-Days Compromised 250,000+ Servers Globally: The Most Damaging Mass Exploitation in History
Four chained zero-days in on-premises Microsoft Exchange Server — exploited first by Chinese APT Hafnium, then by half a dozen other threat…
NewsXZ Utils Backdoor (CVE-2024-3094) — How a Two-Year Social Engineering Operation Almost Backdoored Linux SSH: The Closest Call in Open Source History
A patient, two-year social-engineering campaign by an attacker called "Jia Tan" inserted a sophisticated backdoor into XZ Utils that would have given…
NewsregreSSHion (CVE-2024-6387) — How a Reintroduced 18-Year-Old Bug Made 14M OpenSSH Servers Vulnerable to Pre-Auth RCE: Anatomy & Lessons
A signal handler race condition reintroduced into OpenSSH in version 8.5p1 (2020) created a pre-authentication remote code execution vulnerability affecting approximately 14…