// Operational Doctrine
Nine operational domains orbit a single CORE .
The Core is where you see everything — SIEM, SOAR, forensics,
telemetry. Each surrounding domain is a place an incident can
live, and each has a pivot : the
identifier you correlate on. Spin the wheel — every technology,
decoded.
◈ 10 domains ◈ 101 technologies ◈ 1 core
The nervous system every other domain reports into.
The Core is not a place attackers live — it is where defenders see everything. Telemetry from all nine domains flows here to be normalized, correlated, alerted on, and turned into action. Master the Core and every other domain becomes legible; neglect it and you are blind no matter how many sensors you deploy.
◎ Primary Pivot · Key Element
The case / alert
alert ID case # correlation ID detection rule ID
The Core's pivot is the investigation itself. Everything from every domain is stitched to a case so a single timeline can span an email, a login, a host, and a cloud API call.
Technologies & Topics
(10)
SIEM platform Security Information and Event Management — the aggregation and correlation engine (Splunk, Sentinel, Elastic, Chronicle). It ingests logs from every domain and fires alerts when patterns cross a threshold or match a rule.
Open dossier
SOAR platform Security Orchestration, Automation and Response. Turns repetitive analyst steps — enrich an IP, disable a user, isolate a host — into codified playbooks that run in seconds instead of hours.
Open dossier
Log Pipelines concept The plumbing (agents, forwarders, brokers like Kafka, parsers) that reliably ships events from source to store. If the pipeline drops data silently, every downstream detection is quietly blind.
Open dossier
Data Lake & Normalization concept Raw logs are messy; a schema (OCSF, ECS, ASIM) maps every source into common fields so a query for 'user' or 'src_ip' works across dozens of vendors at once.
Open dossier
Detection Engineering technique Treating detections as code: written, version-controlled, tested against real telemetry, and mapped to MITRE ATT&CK. Sigma is the vendor-neutral rule language of the discipline.
Open dossier
Digital Forensics technique The disciplined recovery and analysis of evidence — disk, memory, and log timelines — under chain-of-custody, answering what happened, when, and how far it spread.
Open dossier
Threat Intelligence concept Context on adversaries: their infrastructure, tooling, and TTPs. Feeds enrich alerts (is this IP known-bad?) and, at the strategic level, tell you which threats to prioritize.
Open dossier
Case Management tool The ticketing spine of the SOC — where alerts become investigations, evidence is attached, and MTTD/MTTR are measured. The system of record for 'who did what, when.'
Open dossier
Runbooks & Playbooks control Pre-authored decision trees for recurring scenarios (ransomware, BEC, credential theft) so responders act on a rehearsed plan under pressure instead of improvising.
Open dossier
UEBA technique User and Entity Behavior Analytics — statistical/ML baselining that flags the anomalous ('this admin never logs in from Lagos at 3am') where static rules miss novel attacks.
Open dossier
Go deeper in the Academy
BLUE//CITADEL Everything that crosses the wire — and the sensors that watch it.
The network is the connective tissue between every asset, which makes it a superb vantage point: attackers can hide a process but they cannot avoid talking. Network defense is about seeing the conversations — who talked to whom, over what, encrypted or not — and spotting the ones that shouldn't exist.
◎ Primary Pivot · Key Element
IP address (+ port, domain, certificate)
203.0.113.7 :443 evil.example[.]com JA3/JA4 hash ASN 64500
The IP tuple (source, destination, port) is the atomic unit of network evidence. Analysts pivot from a suspicious IP to every host that touched it, then to the domains and TLS fingerprints behind it.
Technologies & Topics
(10)
C2 Beacons technique The heartbeat of a compromise: implanted malware 'phones home' to a command-and-control server at regular (often jittered) intervals. Detecting the rhythmic, low-volume callback is a classic network win.
Open dossier
Domain Fronting technique An evasion trick that hides C2 traffic behind a trusted CDN domain in the TLS SNI while the real destination sits in an encrypted header — making malicious traffic look like it's going to a reputable service.
Open dossier
Suricata tool A high-performance open-source IDS/IPS that matches traffic against signatures (including the Emerging Threats ruleset) and emits rich protocol logs. The workhorse of signature-based network detection.
Open dossier
Zeek tool A network analysis framework (formerly Bro) that produces structured, protocol-aware logs — conn, dns, http, ssl, files — rather than alerts. The backbone of network forensics and threat hunting.
Open dossier
TLS Inspection control Terminating and re-encrypting TLS at a proxy so its contents can be inspected. Powerful for detection, but a privacy and performance tradeoff — and increasingly defeated by certificate pinning and ECH.
Open dossier
Certificates & JA3/JA4 artifact Even encrypted sessions leak metadata: the certificate presented and the client's TLS handshake fingerprint (JA3/JA4) can identify specific malware families without decrypting a byte.
Open dossier
IPS / NGFW tool Intrusion Prevention Systems and Next-Gen Firewalls sit inline and can block, not just alert. They combine signatures, reputation, and app-awareness to drop known-bad traffic in real time.
Open dossier
NetFlow / PCAP artifact Two evidence tiers: NetFlow is cheap metadata (who/when/how much) kept long-term; full packet capture (PCAP) is the expensive ground truth kept briefly for deep analysis.
Open dossier
DNS Monitoring technique DNS is the internet's phonebook and a favorite covert channel. Watching for DGA domains, DNS tunneling, and newly-registered domains catches C2 and exfiltration early.
Open dossier
IOCs artifact Indicators of Compromise — malicious IPs, domains, and hashes. The lowest tier of the Pyramid of Pain: trivial for attackers to change, but cheap and fast for defenders to block at scale.
Open dossier
Go deeper in the Academy
PACKET//STORM Where code actually executes — and leaves fingerprints.
Servers, laptops, and workstations are where attacker intent becomes action: processes spawn, files drop, memory changes. The endpoint offers the deepest visibility of any domain, because you can see the actual command line — if you're collecting the right telemetry before the incident, not after.
◎ Primary Pivot · Key Element
Hostname (+ process, file hash, user session)
WIN-DC01 PID 4821 powershell.exe SHA-256 … logon session 0x3e7
The hostname anchors endpoint evidence; from there you pivot into the process tree (parent/child lineage), loaded modules, and the account the process ran as.
Technologies & Topics
(10)
EDR platform Endpoint Detection and Response — the sensor that records process, file, registry, and network events on every host and enables remote investigation and containment. The single highest-value control most orgs deploy.
Open dossier
Live Response technique Reaching into a running machine remotely to collect volatile evidence, pull files, or run containment commands — without pulling the plug and destroying memory-resident artifacts.
Open dossier
Memory Dump & Volatility artifact RAM holds secrets disk never sees: injected code, decrypted payloads, network connections, and credentials. Volatility is the framework for carving process lists and malware out of a memory image.
Open dossier
DLL Injection technique A family of techniques for running malicious code inside a legitimate process's address space (to hide and to inherit trust). Detecting anomalous module loads and hollowed processes is core endpoint work.
Open dossier
Living off the Land (LotL) technique Abusing built-in, signed binaries (LOLBins like certutil, rundll32, mshta) so activity blends into normal admin behavior and never drops a flagged file. Detection shifts from files to behavior.
Open dossier
PowerShell tool An admin's dream and an attacker's too. Script Block Logging and AMSI turn it from a blind spot into one of the richest endpoint telemetry sources — obfuscated one-liners light up like a flare.
Open dossier
Sysmon tool A free Windows sensor that logs process creation with hashes and command lines, network connections, and image loads — the poor man's EDR and a hunting staple.
Open dossier
Hashes artifact Cryptographic fingerprints (SHA-256) of files. Used to identify known malware, verify integrity, and deduplicate — though a single byte change yields a new hash, hence higher-order indicators.
Open dossier
Group Policy control Centralized Windows configuration. A hardening lever (disable macros, enforce logging) — and, if compromised at the domain level, a devastating mass-deployment vector for the attacker.
Open dossier
Forensic Artifacts artifact Windows leaves execution breadcrumbs — Prefetch, Amcache, ShimCache, MFT, event logs — that reconstruct what ran even after the file is gone. The forensic timeline's raw material.
Open dossier
Go deeper in the Academy
BLUE//CITADEL The inbox: still the number-one way in.
Email remains the most common initial-access vector on Earth, because it targets people, not machines. This domain covers the authenticity plumbing that proves who sent a message, the scams that slip past it, and the mailbox-level tricks attackers use once they're inside an account.
◎ Primary Pivot · Key Element
Email address / mailbox (+ message-ID, sender domain)
ceo@company.com Message-ID: <…> return-path domain inbox rule
The mailbox is the pivot: from a reported phish you trace the sender domain, authentication results, every other recipient, and any inbox rules the attacker created to hide their tracks.
Technologies & Topics
(10)
Phishing technique Deceptive messages that harvest credentials or deliver malware. The umbrella term spans mass campaigns to laser-targeted spear phishing; still the initial-access technique behind the majority of breaches.
Open dossier
SPF control Sender Policy Framework — a DNS record listing which servers may send mail for a domain. The first of the three email-authentication pillars; blocks the crudest sender spoofing.
Open dossier
DKIM control DomainKeys Identified Mail cryptographically signs message headers so the recipient can verify the mail wasn't forged or altered in transit. Proves integrity and origin.
Open dossier
DMARC control Ties SPF and DKIM together with a published policy (none/quarantine/reject) and reporting. Properly enforced, it stops attackers from spoofing your exact domain — the fix most orgs half-implement.
Open dossier
BEC technique Business Email Compromise — no malware, just a convincing email (often from a real, hijacked account) instructing a wire transfer or gift-card purchase. Among the costliest cybercrimes by dollar loss.
Open dossier
Mailbox Rule Abuse technique After taking over an account, attackers create hidden inbox rules that auto-delete or forward security warnings and replies — so the real owner never sees the fraud unfolding in their name.
Open dossier
Social Engineering technique Hacking the human: exploiting authority, urgency, and trust to bypass technical controls. The inbox is its primary delivery channel, but it spans voice (vishing) and text (smishing) too.
Open dossier
Secure Email Gateway platform The filtering layer that scores reputation, detonates attachments in a sandbox, rewrites URLs for click-time analysis, and quarantines the obvious. The inbox's front door.
Open dossier
SMTP Headers artifact The full received-header chain, authentication-results, and return-path of a message — the forensic DNA that reveals the true sending path behind a friendly display name.
Open dossier
Attachment & URL Detonation control Sandboxing suspicious files and following links in an isolated environment to observe malicious behavior before a human ever clicks — catching payloads that static scanning misses.
Open dossier
Go deeper in the Academy
HUMAN//ELEMENT Someone else's computer — with your data and your API keys.
In the cloud the perimeter dissolves into API calls and IAM policy. The number-one risk isn't a novel exploit — it's misconfiguration: a public bucket, an over-permissioned role, a leaked key. Defense means reading the control-plane logs and knowing exactly who can do what to which resource.
◎ Primary Pivot · Key Element
Account / subscription (+ resource ARN, principal, API key)
AWS acct 1234… arn:aws:s3:::bucket AKIA… access key IAM role session
The cloud pivot is the identity-and-resource pair in the audit log: which principal (user, role, or key) called which API on which resource. CloudTrail/Activity logs make the whole control plane a timeline.
Technologies & Topics
(10)
IAM Roles & Policies control The heart of cloud security: who (principal) can do what (action) to which resource, under what conditions. Over-broad policies and assumable roles are the most exploited cloud weakness.
Open dossier
STS Tokens artifact Short-lived Security Token Service credentials from assuming a role. Great for least privilege — but stolen tokens grant an attacker exactly the role's power until they expire, and they're hard to revoke.
Open dossier
CloudTrail / Activity Logs artifact The control-plane audit trail recording every API call. The single most important cloud log source — turn it on in every region or you're investigating blind.
Open dossier
VPC Flow Logs artifact Network metadata for cloud traffic — the cloud's NetFlow. Reveals lateral movement and data exfiltration between instances, subnets, and the internet.
Open dossier
GuardDuty tool AWS's managed threat-detection service that mines CloudTrail, DNS, and flow logs for known-bad behavior (crypto-mining, credential exfil, recon) without you writing rules.
Open dossier
S3 & Storage Exposure artifact Object storage buckets are the classic accidental data leak — public ACLs, misconfigured policies, and predictable names have exposed billions of records. Public-access-block is the guardrail.
Open dossier
EC2 & Compute platform Virtual machines and their metadata service (IMDS) — a prized target, since a SSRF that reaches IMDSv1 can steal the instance's role credentials (the Capital One breach playbook).
Open dossier
CSPM platform Cloud Security Posture Management — continuously scans your accounts for misconfigurations and drift against benchmarks (CIS), catching the public bucket before an attacker does.
Open dossier
Resource Groups & Tags concept Logical organization of cloud assets. Good tagging is a security control: it makes ownership, blast radius, and cost attributable when an incident hits a sprawling account.
Open dossier
Shared Responsibility concept The provider secures the cloud (hardware, hypervisor); you secure what's in it (data, IAM, config). Most cloud breaches happen squarely on the customer's side of that line.
Open dossier
Go deeper in the Academy
NEON//ORACLE The new perimeter. Attackers don't break in — they log in.
When the network perimeter dissolved, identity became the control plane. A valid token is a skeleton key that sails past firewalls and EDR alike. This domain covers how trust is federated across systems, and how attackers steal, forge, and replay the assertions that prove who you are.
◎ Primary Pivot · Key Element
User / principal (+ token, session, service principal)
jdoe@corp OAuth access_token Kerberos TGT session cookie svc-backup
The user (or non-human principal) is the pivot. Investigations follow an identity across every app and domain it touched — logins, token grants, consent, and privilege changes — regardless of which device or IP was used.
Technologies & Topics
(10)
SAML concept Security Assertion Markup Language — the XML-based SSO standard that lets an identity provider vouch for you to an application. 'Golden SAML' attacks forge these assertions to impersonate anyone.
Open dossier
OIDC / OAuth 2.0 concept OAuth 2.0 delegates authorization (access without sharing a password); OpenID Connect adds an identity layer on top. The token-based backbone of modern web and mobile auth — and a rich target for consent-phishing.
Open dossier
Tokens & Assertions artifact The bearer credentials of modern auth — JWTs, access/refresh tokens, SAML assertions. Whoever holds a valid token is trusted, which is why token theft (pass-the-cookie) bypasses even MFA.
Open dossier
Privileged Access (PAM) control Managing the accounts that can do the most damage — admins, service accounts, break-glass. Vaulting, session recording, and just-in-time elevation shrink the window a stolen admin credential is useful.
Open dossier
MFA & Conditional Access control Requiring more than a password, and gating access on device, location, and risk signals. Phishing-resistant MFA (FIDO2/passkeys) defeats the MFA-fatigue and proxy attacks that beat push/OTP.
Open dossier
Federation concept Trusting another organization's or provider's identities (B2B, social login). Powerful for UX, but a trust relationship is also an attack path — compromise the IdP and you compromise every relying party.
Open dossier
Reverse Proxies (AiTM) technique Adversary-in-the-Middle phishing kits (Evilginx) proxy the real login page to capture credentials AND the post-MFA session cookie in real time — the modern way MFA gets bypassed.
Open dossier
Directory Services platform Active Directory / Entra ID — the source of truth for who exists and what they can access. Owning the directory (DCSync, Golden Ticket) is checkmate; its logs are prime hunting ground.
Open dossier
Service Principals concept Non-human identities for apps and automation. They vastly outnumber humans, rarely have MFA, and their long-lived secrets are a booming attack surface (the machine-identity problem).
Open dossier
Kerberos & NTLM concept Windows authentication protocols whose ticket abuse — Kerberoasting, pass-the-hash, pass-the-ticket — is the bread and butter of on-prem lateral movement.
Open dossier
Go deeper in the Academy
NEON//ORACLE The code you ship is the attack surface you own.
Every app you expose is a promise that its logic can't be twisted against you. From a marketing 'brochureware' site to a sprawling API, applications are attacked through the same recurring flaw classes — and defended by building security into the pipeline, not bolting it on after.
◎ Primary Pivot · Key Element
Application / endpoint URL (+ session, API key, config item)
/api/v2/orders app: payments-web session JWT CMDB CI-4471
The pivot is the application and its request: which endpoint, from which session, hitting which backend. WAF logs and app logs correlate a malicious request to the account and data it touched.
Technologies & Topics
(10)
OWASP Top 10 concept The industry's consensus list of the most critical web app risks — broken access control, injection, cryptographic failures, SSRF, and more. The baseline curriculum for anyone shipping software.
Open dossier
WAF control Web Application Firewall — inspects HTTP requests and blocks common attack patterns (injection, XSS, bad bots). A useful shield and virtual-patch layer, but never a substitute for fixing the code.
Open dossier
Injection technique Untrusted input interpreted as a command — SQLi, command injection, LDAP injection. The defense is universal: parameterize queries and never concatenate user input into an interpreter.
Open dossier
Databases platform Where the crown jewels sit. Defense spans least-privilege DB accounts, encryption at rest, query parameterization, and monitoring for mass-export patterns that signal exfiltration.
Open dossier
APIs & Gateways platform The connective tissue of modern apps and the fastest-growing attack surface. Broken object-level authorization (BOLA/IDOR) — asking for record 124 instead of 123 — is the signature API flaw.
Open dossier
Containerization (Docker) platform Packaging apps with their dependencies for portability. Security concerns: vulnerable base images, secrets baked into layers, over-privileged containers, and exposed daemon sockets.
Open dossier
SAST / DAST tool Static analysis reads source for flaws before deploy; dynamic analysis attacks the running app from outside. Together they shift security 'left' into the development pipeline.
Open dossier
Secrets Management control Keeping API keys, DB passwords, and certificates out of source code and images — in a vault with rotation and audit. Hardcoded secrets are one of the most common and damaging leaks.
Open dossier
Configuration Items (CMDB) concept The inventory of what apps and components exist, their versions and owners. You cannot patch or defend what you don't know you run — asset truth underpins every other control.
Open dossier
Brochureware & Shadow Apps concept Forgotten marketing sites and unofficial apps that no one patches. Low business value, high risk — they're the unlocked side door attackers love, and the reason inventory matters.
Open dossier
Go deeper in the Academy
RED//HORIZON Where a bad packet can break a physical machine.
Operational Technology runs the physical world — turbines, pumps, assembly lines. Here safety and availability outrank confidentiality, decades-old protocols have no authentication, and you cannot simply reboot a running furnace. Defending OT means understanding the Purdue model and keeping the corporate network's chaos away from the plant floor.
◎ Primary Pivot · Key Element
Physical asset / controller (+ tag, HMI, process value)
PLC-07 Modbus reg 40001 HMI station 3 setpoint 350°C
The pivot is the controller and the process it governs. Analysts correlate commands to a PLC with the physical setpoints and sensor 'tags' — because the real impact is measured in temperature, pressure, and RPM, not bytes.
Technologies & Topics
(10)
SCADA platform Supervisory Control and Data Acquisition — the systems that monitor and control industrial processes across sites. The operator's window into (and hands on) physical infrastructure.
Open dossier
PLC / RTU platform Programmable Logic Controllers and Remote Terminal Units — the ruggedized computers that actually open valves and spin motors. Stuxnet's target; often unauthenticated by design.
Open dossier
MODBUS concept A 1979 serial/TCP industrial protocol with no authentication or encryption — any device on the network can read or command it. Emblematic of OT's 'insecure by design' legacy.
Open dossier
Purdue Model concept The reference architecture that layers OT into levels (0 field devices → 5 enterprise) with an IT/OT DMZ between. The blueprint for segmentation that keeps corporate compromises off the plant floor.
Open dossier
HMI platform Human-Machine Interface — the screens operators use to run the process. A compromised HMI can feed false readings (Stuxnet again) so operators trust a lie while equipment self-destructs.
Open dossier
Historian artifact The time-series database recording every sensor value and setpoint. The forensic record of the physical process — and a bridge system that often straddles the IT/OT boundary.
Open dossier
Safety Instrumented Systems control The last-resort systems (SIS) that trip a process to a safe state. The 2017 TRITON/TRISIS malware targeted these specifically — an attack aimed at causing physical harm, not data theft.
Open dossier
ICS Protocols concept Beyond Modbus: DNP3, EtherNet/IP, PROFINET, OPC-UA. Passive monitoring appliances that speak these protocols provide detection without risking fragile devices with active scans.
Open dossier
Air Gap & IT/OT DMZ control Isolating OT from IT — ideally physically, realistically via a tightly controlled DMZ with data diodes. The primary defense, undermined by USB drives, vendor laptops, and remote-access creep.
Open dossier
Legacy & Patch Constraints concept OT gear runs for 20+ years on unpatchable OSes with vendor-locked warranties. Compensating controls (segmentation, monitoring) matter more here than anywhere, because you often simply cannot patch.
Open dossier
Go deeper in the Academy
PACKET//STORM The trusted computer in every pocket — half of it unmanaged.
Phones hold corporate mail, MFA prompts, and a microphone, yet live outside the traditional perimeter and often on personal devices. Mobile security balances managing the device against respecting the user, defends two very different platforms, and contends with app side-loading and the occasional nation-grade zero-click implant.
◎ Primary Pivot · Key Element
Device (+ IMEI/UDID, app package, enrollment)
device UDID IMEI 3591… com.evil.app (APK) MDM enrollment ID
The pivot is the enrolled device and its identifiers. From a flagged device you trace its enrollment, installed apps (by package name), compliance state, and the user and mailbox behind it.
Technologies & Topics
(10)
MDM / EMM platform Mobile Device / Enterprise Mobility Management (Intune, Jamf, MobileIron) — the control plane that enrolls devices, enforces policy, and can remotely wipe corporate data. The foundation of mobile defense.
Open dossier
Containerization control Splitting a device into managed 'work' and untouched 'personal' profiles so corporate data can be controlled and wiped without touching the user's photos. The key to BYOD that people accept.
Open dossier
Android vs iOS concept Two security models: iOS is a locked-down walled garden; Android is open and more configurable but historically more fragmented. Threat models and controls differ sharply between them.
Open dossier
APK & Side-loading technique Installing apps outside official stores (APK files on Android) bypasses store vetting — a major malware vector. Blocking unknown sources and side-loading is a baseline mobile control.
Open dossier
Fragmentation concept The Android reality: thousands of device models on wildly different OS versions and patch levels, many never updated. A patched vulnerability can remain exploitable on millions of devices for years.
Open dossier
Policy Enforcement control Baseline requirements pushed to devices — encryption, screen lock, minimum OS, no jailbreak — and conditional access that blocks non-compliant devices from corporate resources.
Open dossier
App Attestation control Cryptographic proof (Play Integrity, App Attest) that an app is genuine and running on an untampered device — the defense against repackaged apps and emulator-based fraud.
Open dossier
Jailbreak / Root Detection technique Spotting devices whose security model has been dismantled — where containerization and encryption guarantees no longer hold. A signal to block access, not just log it.
Open dossier
Mobile Phishing technique Smishing (SMS), quishing (QR), and malicious deep links exploit the small screen where full URLs hide. Mobile users click faster and see less — a potent social-engineering surface.
Open dossier
Zero-Click & Spyware technique Mercenary spyware (Pegasus) exploits parsing bugs in messaging apps to compromise a phone with no user interaction. The high end of the mobile threat model — rare, targeted, devastating.
Open dossier
Go deeper in the Academy
SIGNAL//ZERO The newest domain — a model is now an asset, a target, and an attacker.
AI is the ninth domain because models are now production systems with their own attack surface: they can be tricked, poisoned, extracted, and turned into confused deputies with real permissions. This domain covers securing the models you run — and defending against the AI-accelerated adversary on the other side.
◎ Primary Pivot · Key Element
Model (+ prompt, dataset, agent/tool call)
model: gpt-x-prod system prompt training set v3 tool_call: send_email
The pivot is the model and its context: which model, invoked with which prompt, over which data, and — critically for agents — which tools it was allowed to call. AI observability logs make a model's decisions auditable.
Technologies & Topics
(11)
LLMs & Foundation Models platform Large language (and multimodal) models are now core infrastructure. Each one you deploy is an asset to inventory, an endpoint to monitor, and a new class of thing that can be attacked and misused.
Open dossier
Prompt Injection technique The signature LLM attack: untrusted content (a web page, an email, a document) carries hidden instructions the model obeys — turning a helpful assistant into the attacker's proxy. OWASP's #1 LLM risk.
Open dossier
Data Poisoning technique Corrupting training or fine-tuning data so the model learns a hidden backdoor or bias. Because provenance is hard to verify at web scale, a few malicious samples can compromise a model invisibly.
Open dossier
Model Extraction & Inversion technique Stealing a model's weights or behavior through its API (extraction), or reconstructing its private training data from outputs (inversion). Attacks against the confidentiality of the model itself.
Open dossier
Adversarial Examples technique Inputs perturbed just enough to fool a model while looking normal to humans — the stop sign a vision model reads as 'speed limit.' Evasion of the model's core prediction.
Open dossier
RAG & Vector Databases platform Retrieval-Augmented Generation grounds a model in your documents via embeddings in a vector store. A powerful pattern — and a new exfiltration and indirect-injection surface if the corpus is poisoned or over-shared.
Open dossier
AI Agents & Tool Use concept When a model can call tools — send email, run code, hit APIs — a prompt injection becomes a confused-deputy attack with real-world permissions. Agent autonomy multiplies both value and blast radius.
Open dossier
Guardrails control Input/output filtering, system-prompt hardening, allow-listed tools, and human-in-the-loop for high-impact actions. The defensive layer around a model — necessary, imperfect, and never a full boundary.
Open dossier
OWASP LLM Top 10 concept The reference taxonomy of LLM-application risks — prompt injection, insecure output handling, excessive agency, sensitive-info disclosure, and more. The AI domain's OWASP Top 10.
Open dossier
AI-BOM & Model Registry control Inventorying models, their training data lineage, and dependencies (an AI Bill of Materials) in a governed registry. You can't secure or audit models you can't enumerate — supply-chain thinking for AI.
Open dossier
Offensive AI technique The other side: adversaries use AI to write flawless phishing at scale, clone voices, generate deepfakes, and accelerate recon and exploit development. AI is a force-multiplier for attacker and defender alike.
Open dossier
Go deeper in the Academy
NEON//ORACLE