The Blog
Our place for thought sharing, question answering and news announcing.
What Does a Red Teamer Do? We Asked a Full-Time Red Teamer
What does a red teamer actually do in real life? To give you the full story and a realistic look at what it means to be a red teamer, we asked a full-time SECFORCE red teamer about his day-to-day job.
See more
DORA Major Incident Reporting In 15 Steps
Most of the work involved in DORA incident reporting happens well before an incident occurs across these 15 steps. Organisations must follow this process to prepare for DORA incident reporting.
See more
How Often Should You Pen Test?
We've been helping companies assess and upgrade their penetration testing capabilities for over a decade. Based on that experience, we want to share our thoughts on why it's better to do more frequent pen testing than you likely do at present.
See more
Are You Ready for Purple Team Testing?
When is an organisation ready for purple team testing? Have a look at the exact situations where purple teaming will deliver the most value, purple team testing timelines, and what happens after a purple teaming exercise is done.
See more
DORA Incident Reporting Essentials Explained
Being able to report security incidents - under DORA or any other major regulation such as GDPR or NIS2 - is one of the core security capabilities for any organisation that wants to grow its operations. Let's cover the basics.
See more
16 Hours At DEF CON: An Insider View On Antivirus Bypassing
Our red teamer, Dimitri Di Cristofaro, and his fellow hacker, Giorgio Bernardinetti, are running a full 16-hour training course on advanced antivirus (AV) evasion and malware execution at DEF CON 33. We spoke to Dimitri about what participants can expect, and more.
See more