OPTIV/SOURCE ZERO

Captcha images don’t provide robust protection as a primary security control. This analysis explores how to prevent automated (bot) attacks.

Even when the hooks are removed, defenders can still leverage other EDR functions, such as host isolation for incident triage or remote.

This post identifies systemic endpoint detection and response issues and examines how attackers can bypass any EDR product.

Toolsets have evolved for high-fidelity forensics and investigations – here we map them to the MITRE ATT&CK framework for Enterprise Cloud.

Our team describes how single-factor authentication attack surfaces can be exposed in the AirWatch MDM suite and what steps to take to mitigate risks.

A security vulnerability has been found in the Black Duck Hub REST API Python project (“blackduck” in the PyPI repository). Read more.

How to copy updated WinAutomation databases for RPA with Azure custom script extensions – part five of a series.

Part four in the series: setting up RPA with WinAutomation.

How to use Power Automate flows and Azure runbooks to tear down Azure resources and reply to emails – Dan Kiraly explains in part 7 of the series.

How to assign a specific public IP address using Azure Automation runbook. Part three in a series.

How to upload WinAutomation screenshots to Azure Container Storage using Invoke-AzVMRunCommand – part six in a series.