Community-maintained reference articles on cybersecurity concepts, frameworks, tools and standards.
FIDO2 is a set of open authentication standards enabling passwordless login using cryptographic credentials bound to devices. Passkeys are the consumer-friendly implementation…
ISO/IEC 27001 is the international standard for information security management systems (ISMS). Certification demonstrates an organisation's systematic approach to managing sensitive information…
MITRE ATT&CK is a globally accessible knowledge base of adversary tactics and techniques based on real-world observations. It is used as the…
Phishing attacks are social engineering attempts that deceive users into revealing sensitive information or installing malware. Modern phishing leverages AI-generated content for…
A systematic process for reviewing smart contract code to identify vulnerabilities before deployment. Audits typically combine automated scanning, manual code review, and…
Zero Trust Architecture (ZTA) is a security model based on the principle of "never trust, always verify." Unlike traditional perimeter-based security, ZTA…