Browse by topic

Categories.

Twelve canonical tags, one per discipline. Every post lives in at least one of these.

Phishing

Phishing tradecraft, simulation results, and the human edge of social engineering.

Adversary simulation, initial access, and offensive engagements run by the PIVOT team.

Notes on evasion, unhooking, and getting past endpoint detection in real engagements.

APT activity, breach analysis, and the threat landscape that shapes our recommendations.

Where machine learning meets attackers, defenders, and broken assumptions.

Regulatory pressure, frameworks, and what auditors actually want to see.

Where the security industry is heading, with our reading of the signals.

Concrete engagements, sanitised, walked through end to end.

Long-form technical writeups, original tooling, and field notes from R&D.

Containment, eradication, and the playbooks that hold up under pressure.

Patient data, clinical infrastructure, and the threats specific to this sector.

Findings, advisories, and pen-test methodology covering VAPT engagements.