NVISO Labs · Scour

Securing AI systems without overconfidence or fear – Part 2: Attack surfaces and the checkpoint flow

NVISO Labs·

Security’s Blind Spot: Physical Keyloggers That Bypass Antivirus Entirely

NVISO Labs·

The Axios npm supply chain incident: fake dependency, real backdoor

NVISO Labs·

Why the pentesting playbook doesn’t fit: belief, assumptions, and non-determinism

NVISO Labs·

Exploitation of CVE-2026-1281 & CVE-2026-1340 Ivanti EPMM Sleeper Shells

NVISO Labs·

Capture the Kerberos Flag: Detecting Kerberos Anomalies

NVISO Labs·

Boost LLM Security: automated Red Teaming at Scale with Promptfoo

NVISO Labs·

Enterprise Podman Security: Rootless Containers, SELinux, Backups & Docker Comparison

Discussed on r/selfhosted

NVISO Labs·

ConsentFix (a.k.a. AuthCodeFix): Detecting OAuth2 Authorization Code Phishing

NVISO Labs·

OWASP Top 10 2025 – A Pentester’s Perspective

NVISO Labs·

Integrating Abuse Case Scenarios to Improve Authorization Testing

Discussed on Hacker News

NVISO Labs·

The Detection & Response Chronicles: Exploring Telegram Abuse

NVISO Labs·

Managing SIEM Log Collectors at Scale with Ansible and GitHub Actions – Part 1

NVISO Labs·

Detection Engineering: Practicing Detection-as-Code – Tuning – Part 8

NVISO Labs·

Contagious Interview Actors Now Utilize JSON Storage Services for Malware Delivery

NVISO Labs·

Vulnerability Management – Process Perspective

NVISO Labs·

The Road to Post-Quantum Readiness Part 1 of 2: Understanding the Risk

Reducing Microsoft Sentinel Costs Without Compromising Detection – Part 1: The Summary Rules Quest

The Detection & Response Chronicles: Covert Operations Through QEMU

Securing AI systems without overconfidence or fear – Part 2: Attack surfaces and the checkpoint flow

Security’s Blind Spot: Physical Keyloggers That Bypass Antivirus Entirely

The Axios npm supply chain incident: fake dependency, real backdoor

Why the pentesting playbook doesn’t fit: belief, assumptions, and non-determinism

Exploitation of CVE-2026-1281 & CVE-2026-1340 Ivanti EPMM Sleeper Shells

Capture the Kerberos Flag: Detecting Kerberos Anomalies

Boost LLM Security: automated Red Teaming at Scale with Promptfoo

Enterprise Podman Security: Rootless Containers, SELinux, Backups & Docker Comparison

ConsentFix (a.k.a. AuthCodeFix): Detecting OAuth2 Authorization Code Phishing

OWASP Top 10 2025 – A Pentester’s Perspective

Integrating Abuse Case Scenarios to Improve Authorization Testing

The Detection & Response Chronicles: Exploring Telegram Abuse

Managing SIEM Log Collectors at Scale with Ansible and GitHub Actions – Part 1

Detection Engineering: Practicing Detection-as-Code – Tuning – Part 8

Contagious Interview Actors Now Utilize JSON Storage Services for Malware Delivery

Vulnerability Management – Process Perspective

Patching Android ARM64 library initializers for easy Frida instrumentation and debugging