Risk Management
Quantifying Cyber Risk: The Art and Math of Attack Surface Scoring (Part 4)
We have come a long way. In Part 1 I showed the why, in Part 2 I turned that into a scoring method, and in Part 3 I e…
Risk Management
Quantifying Cyber Risk: The Art and Math of Attack Surface Scoring (Part 3)
In Part 2, I shared how I use OSSTMM and RAV to give each asset a risk score. It’s a solid way to get a sense of what’…
OSINT
Leveraging OSINT for Threat Intelligence in Hybrid Warfare
In an age where information moves faster than bullets, Open-Source Intelligence (OSINT) has emerged as a vital pillar…
Risk Management
Quantifying Cyber Risk: The Art and Math of Attack Surface Scoring (Part 2)
In Part 1, I shared how I approach cyber risk by looking at it through the lens of Attack Surface Scoring (ASS). Now i…
Risk Management
Quantifying Cyber Risk: The Art and Math of Attack Surface Scoring (Part 1)
In an increasingly hostile cyber threat landscape, the concept of an Attack Surface has evolved from a vague notion t…
OSINT
When Leaks Talk: How the 2024 Europol Breach Reinforced the Power (and Peril) of OSINT
In today's digital landscape, data breaches have become an unfortunate norm, with threat actors continually evolv…
Tools
Epieos Review: How to Reveal Online Identities with Just an Email or Phone Number
When it comes to OSINT (Open Source Intelligence) investigations, one of the biggest challenges is finding accurate in…