NCC Group Research Blog
The disadvantages of a blacklist-based approach to input validation
4 months ago
The economics of defensive security
4 months ago
The death of USB autorun and the rise of the USB keyboard
4 months ago
The Demise of Signature Based Antivirus
4 months ago
The Database Hacker’s Handbook
4 months ago
The Challenges of Fuzzing 5G Protocols
4 months ago
The CIS Security Standard for Docker available now
4 months ago
The Case of Missing File Extensions
4 months ago
The CERT® C Coding Standard, Second Edition: 98 Rules for Developing Safe, Reliable, and Secure Systems
4 months ago
The Automotive Threat Modeling Template
4 months ago
The Browser Hacker’s Handbook
4 months ago
The 9 Lives of Bleichenbacher’s CAT: New Cache ATtacks on TLS Implementations
4 months ago
The ABCs of NFC chip security
4 months ago
Testing Infrastructure-as-Code Using Dynamic Tooling
4 months ago
Testing Two-Factor Authentication
4 months ago
Testing HTTP/2 only web services
4 months ago
Technical Advisory: Unauthenticated Remote Command Execution through Multiple Vulnerabilities in Virgin Media Hub 3.0
4 months ago
Technical Advisory: Unauthenticated SQL Injection in Lansweeper
4 months ago
Technical Advisory: Sonos Era 100 Secure Boot Bypass Through Unchecked setenv() call
4 months ago
Checked
34 minutes 48 seconds ago