Bruteforcing WPA 802.11r: a new module for HashCat
Previously, pentesting tools did not work with 802.11r hashes
Purpleshift
Incidents 2025: MDR and IR Report
Combining MDR and IR statistics provides a better understanding of current and emerging threats
Yes, we can RCE via your AI agent OpenClaw
Overly autonomous LLM executes commands not requested by the user
Attribution by Slang: Exposing Horabot
How our MDR team investigated a Brazilian hacker attack on Mexico
Incidents 2020-2025: Industry Statistics
What types of attacks are leading in different sectors in different years?
Bypassing authentication in Fortinet products via SSO
An attacker with a FortiCloud account can log in to other users’ FortiOS
Implementation of TCP transport for the Mythic agent
If Mythic agents communicate over HTTP(S), they are easy to detect
Cognitive Biases in SOC Analysts' Work
Anchoring effect, reasoning by analogy, and other logical errors
Top-10 posts of PurpleShift in 2025
We selected posts that got the most likes
Attacking Security Researchers via Visual Studio
A new technique to exploit VS IDE using SUO files