On Tuesday Kali 2026.1 was released. You can find all the details here: https://www.kali.org/blog/kali-linux-2026-1-release/ #kali #2026.1 #backtrack #pentesting #danweis #nexon

By now I'm sure you are all aware of what proper AI governance means for your organisation, but for those of you who don't, AI governance refers to the framework of rules, practices, and processes used to ensure that AI systems are developed and deployed responsibly, ethically, and safely. Most organisations vet their software vendors for AI risk, but what about your third parties / service providers your organisation utilises? How do you gain visibility into their AI usage,

I'm often asked by IT folk, sysadmins, soc staff, and pentesters alike about some free tools they can run across their environments (or their clients) to identify security risks associated with Local Active Directory (LAD) & Entra ID (Formerly AAD). There are a stack of tools out there, but this blog post will cover some nice simple toolsets you can use in between your next pentest to make it more difficult for the pentesters during your next pentest and to improve your IAM

Most organisations these days are very familiar with phishing and Spear Phishing campaigns and are typically included in annual...

If you are seeing an increase in probing and authentication attempts against your PA's of late, its probably associated with this:...

I blogged about this one earlier in the week, but all organisations need to be aware that the latest Palo Alto vulnerability...

It's been 5 years since the initial incident where a bunch of pentesters were arrested doing a physical access assessment at Dallas...