NCC Group Research Blog
Chainspotting 2: The Unofficial Sequel to the 2018 Talk "Chainspotting" - OffensiveCon 2025
3 weeks 4 days ago
Cracking Mifare Classic 1K: RFID, Charlie Cards, and Free Subway Rides
1 month ago
HTTP to MCP Bridge
1 month ago
Public Report - VeChainThor Galactica Security Assessment
1 month 1 week ago
Where You Inject Matters: The Role-Specific Impact of Prompt Injection Attacks on OpenAI models
1 month 1 week ago
Streamlining Global Automotive Cybersecurity Governance to Accelerate Innovation, Assurance, and Compliance
1 month 2 weeks ago
5 MCP Security Tips
1 month 2 weeks ago
EAP-TLS: The most secure option?
2 months 1 week ago
Pentesting V. Red Teaming V. Bug Bounty
2 months 1 week ago
An Engineer’s View: Operational Technology
2 months 3 weeks ago
Technical Advisory: Espressif Systems - ESP32 BluFi Reference Application Vulnerabilities
3 months ago
Insomnihack - Pioneering Zero Days at Pwn2Own Automotive 2024
3 months ago
VeChain JavaScript SDK Cryptography and Security Review
3 months ago
In-Depth Technical Analysis of the Bybit Hack
3 months 1 week ago
A Rendezvous with System Management Interrupts
3 months 2 weeks ago
Technical Advisory: Multiple Vulnerabilities in TCPDF
3 months 2 weeks ago
Security Tips For Your AI Cloud Infrastructure
3 months 3 weeks ago
Technical Advisory – Hash Denial-of-Service Attack in Multiple QUIC Implementations
3 months 3 weeks ago
Weak Passwords Led to (SafePay) Ransomware…Yet Again
3 months 3 weeks ago
Checked
1 hour 51 minutes ago