| 2025-04-15 | Xavier Mertens | Online Services Again Abused to Exfiltrate Data |
| 2025-03-10 | Xavier Mertens | Shellcode Encoded in UUIDs |
| 2024-08-29 | Xavier Mertens | Live Patching DLLs with Python |
| 2024-03-10 | Guy Bruneau | What happens when you accidentally leak your AWS API keys? [Guest Diary] |
| 2023-12-23 | Xavier Mertens | Python Keylogger Using Mailtrap.io |
| 2023-07-21 | Rob VandenBrink | Shodan's API For The (Recon) Win! |
| 2023-04-07 | Xavier Mertens | Detecting Suspicious API Usage with YARA Rules |
| 2023-02-15 | Rob VandenBrink | DNS Recon Redux - Zone Transfers (plus a time machine) for When You Can't do a Zone Transfer |
| 2022-12-19 | Xavier Mertens | Hunting for Mastodon Servers |
| 2022-06-21 | Johannes Ullrich | Experimental New Domain / Domain Age API |
| 2022-03-18 | Johannes Ullrich | Scans for Movable Type Vulnerability (CVE-2021-20837) |
| 2022-02-25 | Didier Stevens | Windows, Fixed IPv4 Addresses and APIPA |
| 2022-01-21 | Xavier Mertens | Obscure Wininet.dll Feature? |
| 2021-12-17 | Rob VandenBrink | DR Automation - Using Public DNS APIs |
| 2021-09-09 | Johannes Ullrich | Updates to Our Datafeeds/API |
| 2021-07-24 | Xavier Mertens | Agent.Tesla Dropped via a .daa Image and Talking to Telegram |
| 2021-06-19 | Xavier Mertens | Easy Access to the NIST RDS Database |
| 2021-03-17 | Xavier Mertens | Defenders, Know Your Operating System Like Attackers Do! |
| 2021-01-07 | Rob VandenBrink | Using the NIST Database and API to Keep Up with Vulnerabilities and Patches (Part 1 of 3) |
| 2020-12-22 | Xavier Mertens | Malware Victim Selection Through WiFi Identification |
| 2020-09-02 | Xavier Mertens | Python and Risky Windows API Calls |
| 2020-08-18 | Xavier Mertens | Using API's to Track Attackers |
| 2020-07-28 | Johannes Ullrich | All I want this Tuesday: More Data |
| 2020-05-29 | Johannes Ullrich | The Impact of Researchers on Our Data |
| 2020-05-21 | Xavier Mertens | Malware Triage with FLOSS: API Calls Based Behavior |
| 2020-02-29 | Guy Bruneau | Hazelcast IMDG Discover Scan |
| 2020-01-16 | Bojan Zdrnja | Summing up CVE-2020-0601, or the Let?s Decrypt vulnerability |
| 2018-11-17 | Xavier Mertens | Quickly Investigating Websites with Lookyloo |
| 2018-11-12 | Rick Wanner | Using the Neutrino ip-blocklist API to test general badness of an IP |
| 2017-11-17 | Xavier Mertens | Top-100 Malicious IP STIX Feed |
| 2017-09-05 | Adrien de Beaupre | Struts vulnerability patch released by apache, patch now |
| 2017-05-10 | Johannes Ullrich | Read This If You Are Using a Script to Pull Data From This Site |
| 2015-09-03 | Xavier Mertens | Querying the DShield API from RTIR |
| 2014-05-28 | Rob VandenBrink | Assessing SOAP APIs with Burp |
| 2014-01-20 | Rob VandenBrink | You Can Run, but You Can't Hide (SSH and other open services) |
| 2012-11-16 | Guy Bruneau | VMware security updates for vSphere API and ESX Service Console - http://www.vmware.com/security/advisories/VMSA-2012-0016.html |
| 2010-03-30 | Pedro Bueno | Sharing the Tools |
