HomeSecurity Resources

SECURITY RESOURCES

Offensive minded security exploit development
VerSprite Envisions: Critical Threat Report 2026

Ebooks & Guides, Geopolitical Risk

VerSprite Envisions: Critical Threat Report 2026

Read Critical Threat Report Now
Harnessing AI for DevSecOps: Is AI the Future?

Harnessing AI for DevSecOps: Is AI the Future?

The uses of AI for DevSecOps teams.

Read About the Future of DevSecOps AI
What is Threat Modeling?

Threat Modeling

What is Threat Modeling?

A common question asked by people new to the specifics of cybersecurity. Threat modeling is a practical measure used to protect your business’ data and networks from cyber threats and attacks.

Read About Threat Modeling
A Pasta Threat Modeling Solution for Complex Cybersecurity Tasks

A Pasta Threat Modeling Solution for Complex Cybersecurity Tasks

PASTA is not a complicated static framework. It’s an agile methodology that breaks down and solves complex cybersecurity tasks, allows scaling, and evolves with the cybersecurity landscape and business goals.

Read About PASTA Threat Modeling
The Process for Attack Simulation and Threat Analysis

Cybersecurity Library, Ebooks & Guides, Threat Modeling, VerSprite Security Resources

The Process for Attack Simulation and Threat Analysis

PASTA is the Process for Attack Simulation & Threat Analysis and is a risk-centric threat modeling methodology aimed at identifying viable threat patterns against an application or system environment.

Download PASTA Threat Modeling eBook
AI-Powered MDR: How VerSprite and Google SecOps Slash Breach Risk by 70%

AI-Powered MDR: How VerSprite and Google SecOps Slash Breach Risk by 70%

Read VerSprites AI Powered MDR
AI Agents vs Humans in Penetration Testing

AI Agents vs Humans in Penetration Testing

Learn About AI Pen Testing
Attacking Your Assumptions: How Criminal Tactics Can Save Your Organization

Attacking Your Assumptions: How Criminal Tactics Can Save Your Organization

In this article, VerSprite’s Offensive Security team explore the difference between common security risk assessments (vulnerability assessment, penetration testing, and red teaming) as we walk you through real exploits we have used to test organizations’ security protocols.

Read About Criminal Tactics

Category

View All
Maturing 3rd Party Vendor Risk Programs
Slides & Presentations, VerSprite Security Resources

Maturing 3rd Party Vendor Risk Programs
Cyber Liability Insurance and Your Security Program – How They Fit
VerSprite Security Resources, Videos, Webinars

Cyber Liability Insurance and Your Security Program – How They Fit
US Company Exploring FinTech
Geopolitical Risk, Possible Use Cases, VerSprite Security Resources

US Company Exploring FinTech
Modernizing the Telecommunications Industry
Geopolitical Risk, Possible Use Cases, VerSprite Security Resources

Modernizing the Telecommunications Industry
Risk Centric Threat Modeling: AppSec, Risk, Compliance Convergence | CSX North American Conference
Slides & Presentations, VerSprite Security Resources

Risk Centric Threat Modeling: AppSec, Risk, Compliance Convergence | CSX North American Conference
Healthcare Threat Modeling Vignettes
Slides & Presentations, Threat Modeling, VerSprite Security Resources

Healthcare Threat Modeling Vignettes
HITECH /HIPAA Privacy Rule Medical Record Retention
Governance Risk & Compliance, Information Security Management System (ISMS), Regulatory Compliance

HITECH /HIPAA Privacy Rule Medical Record Retention
WD My Cloud Command Injection – Access All Private Folders
Cloud Security, VerSprite Security Resources, Videos

WD My Cloud Command Injection – Access All Private Folders
Command Injection in the WD My Cloud NAS
Application Security, Cloud Security, Information Security Management System (ISMS)

Command Injection in the WD My Cloud NAS
WD My Cloud Command Injection – Remote Root with WebRTC
Cloud Security, VerSprite Security Resources, Videos

WD My Cloud Command Injection – Remote Root with WebRTC
Anti-Nausea Medicine for LastPass, Password Management FUD
Application Security, Governance Risk & Compliance, Information Security Management System (ISMS), Regulatory Compliance

Anti-Nausea Medicine for LastPass, Password Management FUD
Why Threat-Free Threat Modeling Doesn’t Work
Application Security, Threat Modeling

Why Threat-Free Threat Modeling Doesn’t Work
Into the Jar | JSON Pickle Exploitation
Application Security, Security Research

Into the Jar | JSON Pickle Exploitation
Assessing Emerging JavaScript Platforms with Express.js and Node.js – What to Look For
Application Security, Information Security Management System (ISMS)

Assessing Emerging JavaScript Platforms with Express.js and Node.js – What to Look For
Android Titan SMS Trojan Analysis | Part One
Application Security, Mobile Security Testing, Security Research

Android Titan SMS Trojan Analysis | Part One
ci cd security, devsecops ci/cd, web app pen testing

Subscribe for Our
Updates

Please enter your email address and receive the latest updates