Latest News

Read all latest blog posts

NBD: A Powerful Tool for data center
July 24, 2024

NBD: A Powerful Tool for data center

NBD: A Powerful Tool for data center NBD, the abbreviation for Network Block Device (protocol), is a protocol that was initially implemented in the Linux kernel version 2.

Read More
NBD: A Powerful Tool for data center
July 24, 2024

NBD: A Powerful Tool for data center

NBD: A Powerful Tool for data center NBD, the abbreviation for Network Block Device (protocol), is a protocol that was initially implemented in the Linux kernel version 2.

Read More
Demystifying SFTP
July 17, 2024

Demystifying SFTP

Introduction SFTP is an auxiliary protocol of SSH that allows file transfer between two hosts over the SSH protocol.

Read More
xz/liblzma Backdoor: Open Source Nuke? Maybe Not That Bad!
March 31, 2024

xz/liblzma Backdoor: Open Source Nuke? Maybe Not That Bad!

xz/liblzma Backdoor: Open Source Nuke? Maybe Not That Bad! Story Background On March 29, 2024, a report exposing a backdoor in the upstream source code of the controversial open-source project, the xz software package, was made public on the oss-security mailing list.

Read More
Supermicro x11ssh-F OpenBMC Porting (WIP)
March 15, 2024

Supermicro x11ssh-F OpenBMC Porting (WIP)

Supermicro x11ssh-F OpenBMC Porting (WIP) Introduction to BMC and OpenBMC BMC, short for Baseboard Management Controller, is a specialized microcontroller embedded in certain computers, typically servers.

Read More
Key management of OpenPGP Card
October 11, 2023

Key management of OpenPGP Card

Key management of OpenPGP Card Background As blank smartcards supporting Java Card 3.

Read More
Protect the Watcher: Hardened SIEM/XDR server with VED
August 25, 2023

Protect the Watcher: Hardened SIEM/XDR server with VED

Background Modern cybersecurity operation centers significantly depend on two key elements: agent-based security solutions operating on desktops, laptops, and server operating systems, and a threat analysis system, often referred to as a Security Information and Event Management (SIEM) system or eXtended Detection and Response (XDR).

Read More
Vault Range - The Measure and Resilience of Weaponized Exploit Methods for Linux
July 16, 2023

Vault Range - The Measure and Resilience of Weaponized Exploit Methods for Linux

Disclaimer VED (Vault Exploit Defense) test image contains only the VED kernel module, and does not contain any security baselines, access control policies and situational hardening solution.

Read More
+PROTECTING LINUX AT KERNEL LEVEL WHY AND HOW
July 9, 2023

+PROTECTING LINUX AT KERNEL LEVEL WHY AND HOW

Introduction We designed Vault Exploits Defense (VED) as a foundation security layer for various flavors of Linux operating system.

Read More
Memory corruption in JCRE: An unpatchable HSM may swallow your private key
April 18, 2023

Memory corruption in JCRE: An unpatchable HSM may swallow your private key

Background The key has always been a core target of security protection.

Read More