Get the latest updates!

Blog

Threat Analysis: Unpacking the “ToolShell” Zero-Day in Microsoft SharePoint

by Vincent Qi | Aug 13, 2025 | Blog

In July 2025, multiple critical vulnerabilities collectively known as “ToolShell” and tracked as CVE-2025-49704, CVE-2025-49706, CVE-2025-53770, and CVE-2025-53771, were discovered in Microsoft SharePoint Enterprise Server. These flaws, actively exploited in the wild,...

Automating Infrastructure Workflows for AI Security

by William Qiao | Aug 11, 2025

In the rapidly evolving field of AI-powered cybersecurity, efficient infrastructure management is...

Citrix NetScaler Out-of-Bounds Memory Read Vulnerability CVE-2025-5777

by Yichen Liu | Aug 4, 2025

Citrix NetScaler is a networking product that optimizes, secures, and controls the delivery of...

How LLMs Help Penetration Testers Exploit Systems with First-Principles Thinking

by Colby Watts | Jul 28, 2025

As cybersecurity teams strive to keep up with evolving threats, it's easy to fall into reactive...

The First Principles of Penetration Testing

by Yvonne Ye | Jul 23, 2025

As cybersecurity teams strive to keep up with evolving threats, it's easy to fall into reactive...

Defending the Next Frontier of AI Infrastructure Threats — MCP Security — with RidgeBot

by Oliver Xu | Jul 16, 2025

As generative AI evolves from chatbots to autonomous agents, a new integration standard is...

Critical Ivanti EPMM Vulnerabilities (CVE-2025-4427 & 4428): RidgeBot Can Detect & Validate the Threat

by Max Blennemann | Jul 14, 2025

Ivanti Endpoint Manager Mobile (EPMM) is a comprehensive enterprise Mobile Device Management (MDM)...

« Older Entries