Search titles only
By:
Home
Members
Moderators
Current visitors
Escrow
Deposit
Account Upgrades
ADS
Help
Storm Exchange
Komplexes Bot
Log in
Register
What's new
Search
Search titles only
By:
Menu
Log in
Register
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Depov
ULTIMATE
SUPREME
PREMIUM
MEMBER
Activist
Joined
Feb 18, 2025
Last seen
Yesterday at 11:25 PM
Messages
126
Reaction score
115
Deposit
0$
Find
Find content
Find all content by Depov
Find all threads by Depov
Latest activity
Postings
About
Depov
posted the thread
UEBA to detect insiders: setting up behavioral analytics and integration with SIEM
in
Programming
.
Why DLP System Without Behavioral Analytics Is Blind to Slices DLP sees content and transmission channel. It works when a document with...
Yesterday at 11:25 PM
Depov
posted the thread
Attacks on endpoint management of the system: analysis of TTP 2026 and detection for SOC
in
Web
.
On February 13, 2026, CISA gave the organizations three days to eliminate CVE-2026-1731 - pre-authentiction RCE in BeyondTrust Remote...
Yesterday at 11:23 PM
Depov
posted the thread
Mapping the external attacked surface of the organization: Passive DNS, CT-logs and hunt for Shadow IT
in
Web
.
At the pre-engagement phase of the pentest industrial company, I uploaded the root domain to cl.sh and received 47 subdomains. The IT...
Monday at 11:46 PM
Depov
posted the thread
Smartphone protection from surveillance: GrapheneOS, Lockdown Mode and mobile hardening for high-risk users
in
Programming
.
When we disassembled a similar case on the protection side for a media organization, the picture was painfully familiar: the corporate...
Monday at 11:43 PM
Depov
posted the thread
CI/CD for Beginners: Docker, GitLab CI and the first safe pypaline
in
Programming
.
CI/CD-pipeline as an attack surface CI/CD (Continuous Integration / Continuous Delivery) - a conveyor that automatically collects, tests...
Sunday at 11:29 PM
Depov
posted the thread
Vulnerability Monitoring for Blue Team: a conveyor from KEV CISA to patching prioritization
in
Programming
.
Why CVSS is not enough to prioritize patches by risk CVSS has long been the only language of vulnerability management with business and...
Sunday at 11:26 PM
Depov
posted the thread
Ivanti Endpoint Manager: EPMM operating chain from auth bypass to pre-auth RCE
in
Programming
.
Five entries in the CISA KEV catalog in three years - so many times Ivanti EPMM demanded emergency patching as an actively used product...
Sunday at 11:23 PM
Depov
posted the thread
Pentest Password Manager: Attacks and Hardening 1Password, Bitwarden and CyberArk
in
Web
.
Wednesday, 14:20, the third day of the internal pentest in the fintech company. Through Responder and NTM relay, I get foothold at the...
Sunday at 11:20 PM
Depov
posted the thread
Anti-fraud analytics of transactions: free-patterns and scoring rules in practice
in
Web
.
Business logic of the Ford: what is behind the anomalous transaction The scale is specific. According to AFP Payments Fraud and Control...
Sunday at 11:16 PM
Depov
posted the thread
hift-left in practice: the implementation of SAST and DAST in CI/CD without disruption of releases
in
Web
.
CI/CD-pipeline as the surface of the attack: why does it be known to the pentester Before you build scanners, it is worth looking at the...
Sunday at 11:12 PM
Depov
posted the thread
Web | Gallery
in
Web
.
Entry In general, I do not make WriteWP's on the tasks that already have it on the platform. However, after my decision, I decided to...
Thursday at 11:52 PM
Depov
posted the thread
Post-Vante cryptography in the pentest: audit tools and a checklist for searching for weak algorithms
in
Programming
.
At the cryptocurrencies API fintech service, I found TLS 1.0 with RC4 on three internal endpoints - interservice interaction, not...
Thursday at 11:49 PM
Depov
posted the thread
Pentest macOS in 2026: kill chain from fingerprinting to persistence on Apple Silico
in
Programming
.
At the last internal pentest, fintech companies 14 of the 18 workstations were on macOS Sequoia with M3 chips. Cobalt Strike beacon...
Jun 17, 2026
Depov
posted the thread
Stolen Accounting as a Login Point: From Infosilers to National-state Level Attacks
in
Web
.
Over the past two years, I have dealt with more than fifty incidents, where the initial access began with one pair of login/steel logg...
Jun 17, 2026
Depov
posted the thread
ITSM Systems Vulnerabilities: SSRF, STI and Attacks through the integration of Jira, ServiceNow and Freshservice
in
Programming
.
On the telecom operator pentest last year, I killed two days perimeter - WAF, minimum surface, standard story. The entry point was found...
Jun 16, 2026
Loading…
Loading…
Top
Bottom
