Source Zero

The Source Zero platform is a community of Optiv’s skilled individuals doing research and sharing their expertise. The Source Zero Tools are resources that provide actionable support and demonstrations around research initiatives.

Cloud_native_security_controls_6_list_476x210

Defending Against Container Threats With Palo Alto Prisma Cloud

September 16, 2020

Palo Alto Networks Prisma Compute can help minimize the risk of deploying untrusted images.

See Details

Blog

Attacking the JNI Boundary with Frida

September 11, 2020

Moving functionality from Java to native implementations in Android increases obscurity but not security.

See Details

Tool

Attacking the JNI Boundary with Frida

September 11, 2020

Moving functionality from Java to native implementations in Android increases obscurity but not security.

See Details

Blog

DEF CON 2020 Red Team Village Talk - Breaking The Attack Chain

September 02, 2020

Two experienced red teamers describe successful engagements and how to counter attack chains.

See Details

Blog

security_of_collaboration_tools_list_476x210

Walkthrough of an iOS CTF

August 25, 2020

A quick walkthrough of the general steps taken to solve an iOS CTF.

See Details

Blog

Universal BLE Monitoring with Frida (or Objection)

August 24, 2020

The standalone script can be used directly with Frida in order to monitor basic BLE traffic between a mobile device (central) and a BLE peripheral.

See Details

Tool

Source Zero: Introducing Our New Technical Security Community

August 20, 2020

Our new technical cybersecurity resource, Source Zero, focuses on red and blue team security capabilities.

See Details

Video

Netwrix Account Lockout Examiner 4.1 Disclosure Vulnerability

August 13, 2020

Netwrix Account Lockout Examiner (versions prior to 5.1) allows an unauthenticated remote adversary to capture the NTLMv1/v2 challenge response....

See Details

Blog

Anatomy of a Kubernetes Attack - How Untrusted Docker Images Fail Us

July 22, 2020

An attacker could use a poisoned docker image to break out of a container.

See Details

Blog

Optiv’s REST API “Goat”

July 10, 2020

Optiv is releasing REST API Goat, a vulnerable API, to help boost AppSec skills.

See Details

Blog

Like Tears in Rain: A DeathHiddenTear Ransomware Breakdown

July 02, 2020

Here is current analysis insight and a YARA rule to help you detect HiddenTear ransomware variants.

See Details

Blog

Aligning Defender ATP Alerts to MITRE ATT&CK - Video Demonstration

June 30, 2020

How to prioritize efforts based on alert information from Microsoft Defender ATP, Logic Apps, and Log Analytics.

See Details

Blog

No license, express or implied, to any intellectual property or other content is granted or intended hereby.
This blog is provided to you for information purposes only. While the information contained in this site has been obtained from sources believed to be reliable, Optiv disclaims all warranties as to the accuracy, completeness or adequacy of such information.
Links to third party sites are provided for your convenience and do not constitute an endorsement by Optiv. These sites may not have the same privacy, security or accessibility standards.
Complaints / questions should be directed to Legal@optiv.com

OPTIV/SOURCE ZERO