2022 The State of Attack Surface Management
The 2022 NCCDC season has come to an end. As a founding member of the NCCDC Red Team, I have been volunteering at this event
When it comes to protecting your organization from cyber threats, a well armed attacker is typically your worst nightmare. But if you work for a
The 2022 NCCDC season has come to an end. As a founding member of the NCCDC Red Team, Randori’s Director of Offense, Evan Anderson, has been
Hiring cybersecurity talent in today’s environment can be incredibly challenging. But establishing a red team can be even trickier, because finding the right talent can
In our latest report, The State of Offensive Security 2022, we provide insight into what we discovered about how well organizations have adopted the offensive
In 1871, military theorist Helmuth von Moltke wrote, “no battle plan survives contact with the enemy.” Because cybercriminals will do trillions in damage this
Log4j feels like a decade ago, but we’re still getting asked about it, months later. The industry rallied as fast as it could to apply
At Randori, we help security teams by unlocking the attacker’s perspective. Red Teaming has long been the gold standard of offensive security, offering an authentic
The finance industry is one of the most targeted industries when it comes to cyber attacks, second only to healthcare. Between 2009 and 2019 big
Leaders in cyber defense recognize the importance of red team activities to continually improve the effectiveness of their security programs. Building a red team that
Last Update: 4:13pm EST, Dec. 14, 2021 (List of updates at bottom) What is Log4Shell? Log4Shell is a high severity vulnerability (CVE-2021-44228, CVSSv3 10.0) impacting
Overview: CVE-2021-3064 On November 10, 2021 Palo Alto Networks (PAN) provided an update that patched CVE-2021-3064 which was discovered and disclosed by Randori. This vulnerability
