During an engagement in early 2021 my colleague and myself stumbled across an FTP server with a banner that we've never seen before....We downloaded the FTP Server, set up a testing environment, began to dissect it and found 6x high impact vulnerabilities.

Connaisseur is a Kubernetes admission controller for container image signature verification. The latest release v2.2 improves usability...

This spotlight is intended to shed some light on Active Directory Trusts, the value they bring, the risk they can contain and how to...

In the first part of this Active Directory (AD) spotlight I introduced the mechanics of Active Directory Trusts and highlighted what a...

Connaisseur v2.0 adds support for multiple keys and signature solutions.

Container image signatures are a rarely implemented security feature, even though images' contents are ever changing and hard to get a grasp of, making it easy for attackers to hide malicious content in them.

Default AKS cluster stores admin credentials in Kubernetes ConfigMap.

A central question in application security is: how do we ensure that our Docker containers actually run the code that we intend to run?

During my work at SSE (I was working on the security-first DNS provider deSEC), I was facing the need for quickly looking up the so-called Public Suffix for a given domain name. If the domain name is, say, amazon.co.uk, then the Public Suffix would be co.uk.