OPTIV/SOURCE ZERO
Innovation and Research Around Technology and Security
The Source Zero platform is a community of Optiv’s skilled individuals doing research and sharing their expertise. The Source Zero Tools are resources that provide actionable support and demonstrations around research initiatives.

September 11, 2020
Moving functionality from Java to native implementations in Android increases obscurity but not security.
Blog

September 02, 2020
Two experienced red teamers describe successful engagements and how to counter attack chains.
Blog

August 25, 2020
A quick walkthrough of the general steps taken to solve an iOS CTF.
Blog

August 24, 2020
The standalone script can be used directly with Frida in order to monitor basic BLE traffic between a mobile device (central) and a BLE peripheral.
Tool

August 20, 2020
Our new technical cybersecurity resource, Source Zero, focuses on red and blue team security capabilities.
Video

August 13, 2020
Netwrix Account Lockout Examiner (versions prior to 5.1) allows an unauthenticated remote adversary to capture the NTLMv1/v2 challenge response....
Blog

July 22, 2020
An attacker could use a poisoned docker image to break out of a container.
Blog

July 10, 2020
Optiv is releasing REST API Goat, a vulnerable API, to help boost AppSec skills.
Blog

July 02, 2020
Here is current analysis insight and a YARA rule to help you detect HiddenTear ransomware variants.
Blog

June 30, 2020
How to prioritize efforts based on alert information from Microsoft Defender ATP, Logic Apps, and Log Analytics.
Blog

June 19, 2020
Burp Suite’s Intruder tool can be used to automate testing for weak/default passwords.
Blog

June 19, 2020
Talon automates a password guessing technique targeting Kerberos and LDAP within the Windows Active Directory environment.
Tool
-
Copyright © 2021 Optiv Security Inc. All rights reserved.
-
No license, express or implied, to any intellectual property or other content is granted or intended hereby.
-
This blog is provided to you for information purposes only. While the information contained in this site has been obtained from sources believed to be reliable, Optiv disclaims all warranties as to the accuracy, completeness or adequacy of such information.
-
Links to third party sites are provided for your convenience and do not constitute an endorsement by Optiv. These sites may not have the same privacy, security or accessibility standards.
-
Complaints / questions should be directed to Legal@optiv.com