Notes from the bench.
Findings, post-mortems, scanner walkthroughs and the occasional opinion. Written by the operators on the engagement, not by the marketing team. No template-driven slop.
Cyber Security
Black-box penetration testing: Cyber security testing methodology
A methodology-focused guide to black box penetration testing: how external, zero-knowledge testing is run, the tools it relies on, and how it compares to white and grey box approaches.
Cyber Security
Cyber attacks: 13 steps To Improve Your Website Security
How to tell your website has been compromised — the warning signs, from Google flags to ransomware notes — and the steps that help you regain control and harden it.
Cyber Security
Cyber Security Trends to Look for in 2022/2023
The threats and shifts shaping the year ahead — automotive and mobile attack vectors, machine learning, AI risk and the growing targeting of healthcare and education.
Uncategorized
Cyber security professionals OS: What’s the best operating system for cyber security professionals?
Mac, Windows or Linux for security work? A side-by-side comparison of the three operating systems — their strengths, weaknesses and which one professionals tend to choose.
Tech
PHP Security: How to protect your WordPress website
Why PHP underpins WordPress and much of the web, and the concrete steps that protect PHP-based sites — including your WordPress build — from the exploits that target them.
Cyber Security
Who needs cyber security
The sectors most exposed to attack — healthcare, finance, government, education and more — shown through real breaches and the measures each can use to defend itself.
Written by the operators
on the engagement.
We publish what we'd want to read on the train home. Reproducers, post-mortems, the occasional opinion. If a piece doesn't survive a peer review by the bench, it doesn't ship.