Offensive
Security Blog

Product

Most Security Programs Test a Fraction of Their Applications. That Changes Today.

Feb 9, 2026

Bishop Fox's Rob Ragan explores how Cosmos AI transforms application security testing from a logistical bottleneck into a scalable service—enabling organizations to test entire portfolios.

By Rob Ragan

Advisory

Deep Dive into Arista NG Firewall Vulnerabilities

Feb 9, 2026

Bishop Fox identified six vulnerabilities in Arista NG Firewall version 17.4, including critical command injection flaws allowing root-level code execution with some exploitable by chaining attacks through a single malicious link.

By Ronan Kervella

Industry

Get the Most from Testing Your Applications

Feb 4, 2026

Pen tests don’t fail because testers miss bugs. They fail when no one agrees what questions the test should answer. In today’s cloud- and AI-driven apps, scoping, execution, and follow-through determine whether results drive real decisions or just become another filed report.

By Bishop Fox Researchers

Industry

Why the Board Belongs in the War Room: The Untapped Value of Crisis Readiness

Jan 22, 2026

Boards may not be on the front lines, but they’re always in the blast radius. Crisis simulations help directors experience uncertainty firsthand, strengthening governance, trust, and decision-making before headlines hit.

By Justin Greis

Technical Research

The Total Cost of AI Ownership: The Costs Not on Your Budget Sheet

Jan 13, 2026

AI looks affordable at first, licenses, cloud, headcount. But once it’s in production, costs spread across teams, systems, and decisions in ways most models miss. Here’s what we’ve learned about the hidden costs of owning AI long-term.

By Kelly Albrink

Industry

What to Look for in a Red Team Vendor

Jan 8, 2026

Red team proposals often look the same. The outcomes rarely are. If you’re trying to avoid surprises, defend security decisions, and gain real confidence, choosing the right red team partner matters more than ever. Here’s what separates signal from noise.

By Bishop Fox

Technical Research

GenAI DevOps: More Code, More Problems

Dec 30, 2025

GenAI has made it possible for anyone to ship production code, but security hasn’t caught up. The real risk isn’t bad AI code, it’s how quickly unsafe behavior reaches production. Here’s how to build guardrails so speed doesn’t become liability.

By Derek Rush

Industry

Bishop Fox Wrapped: Research Worth Replaying

Dec 23, 2025

This is Bishop Fox Wrapped. A snapshot of the research, blogs, virtual sessions, and tools that security teams kept coming back to, and what that tells us about what they needed this year.

By Bishop Fox

Technical Research

MITRE AADAPT Framework as a Red Team Roadmap

Dec 17, 2025

MITRE’s AADAPT framework exposes how attackers target digital-asset systems but the real value comes from testing those threats. Learn how red teaming turns AADAPT into evidence-driven detection, stronger controls, and measurable protection against economic loss.

By Bishop Fox

Industry

A Hacker Holiday Gift Guide: 2025 Edition

Dec 10, 2025

Shopping for a hacker? Skip the gimmicks. Here are the tools, training, and books they actually want: Flipper Zero, Proxmark3, Shodan, HTB, and must-read vuln research picks, perfect for deal-season lab upgrades.

By Bishop Fox

Technical Research

Arista NextGen Firewall XSS to RCE Chain

Dec 4, 2025

Arista flagged three NG Firewall bugs as “limited.” Our researchers proved otherwise: real-world remote code execution is possible, and current patches don’t fully fix the root issues. Here’s what’s vulnerable, what we validated, and the steps to cut exposure now.

By Jon Williams, Ronan Kervella, Bishop Fox Researchers

Industry

What Will Shape Cybersecurity in 2026: AI Speed, Expanding Attack Surfaces, and Specialized Red Teams

Dec 3, 2025

2026 will hit cybersecurity like a fast-forward button: AI moves quicker than governance, attack surfaces sprawl into the physical world, and red teams get hyper-specialized. Here’s what’s coming—and how to stay ahead before “optional” becomes “too late.”

By Vincent Liu, Christie Terrill, Kelly Albrink, Trevin Edgeworth, Dan Petro

Industry

A Note on AI from Christie Terrill, CISO, Bishop Fox

Nov 25, 2025

After a month of conferences and CISO conversations, one thing is clear: AI is reshaping security—fast. But the excitement comes with uncertainty, risk, and big unanswered questions. Here’s what leaders are really saying.

By Christie Terrill

Technical Research

Fortinet FortiWeb Authentication Bypass – CVE-2025-64446

Nov 19, 2025

Bishop Fox researchers discovered an authentication bypass in FortiWeb that lets attackers add their own admin accounts, take over the device, and erase evidence. Organizations can quickly check if they’re exposed using a new Bishop Fox scanner and should remove public access and update immediately.

By Jon Williams, John Untz

Industry

Ready to Hack an LLM? Our Top CTF Recommendations

Nov 5, 2025

The best way to understand LLM vulnerabilities isn’t by reading, it’s by hacking. Explore our top CTF and sandbox picks to safely test prompt injections, jailbreaks, and model exploits while sharpening your AI security skills.

By Luke Sheppard

Industry

Invasion of the Face Changers: Halloween Hijinks with Bluetooth LED Masks

Oct 30, 2025

This Halloween, Bluetooth LED masks promise eerie fun — until anyone with a pocket-sized controller can change your face. I built one. Read how a common BLE flaw turns glowing costumes into prankable (and revealing) security lessons.

By Nathan Elendt

Industry

Small Actions, Big Breaches: The Silent Offensive Against Your data

Oct 17, 2025

AI and SaaS have transformed how people work, but security hasn’t kept up. New data shows most data exposure now stems from human behavior—copy, paste, and upload actions inside unmanaged browsers and AI tools.

By Bishop Fox

Industry

SaaS Threats are Escalating: A Follow-Up to Our Recent Analysis

Oct 14, 2025

SaaS attacks are accelerating fast. Our latest research and fireside chat with experts from AppOmni and Bishop Fox expose how threat actors are exploiting OAuth, targeting admins, and moving laterally across cloud apps—and what defenders can do to stop them.

By Christie Terrill

Industry

Burp Variables: A Burp Suite Extension

Oct 10, 2025

Burp Suite has long been the industry standard for web application testing, thanks in large part to its extensibility. Bishop Fox has built on that tradition with Burp Variables, a new extension that fills a major gap in Burp’s workflow: variable handling.  

By Bishop Fox

Technical Research

How a $20 Smart Device Gave Me Access to Your Home

Oct 2, 2025

Bishop Fox research uncovered zero-day vulnerabilities in the YoLink Smart Hub. Anyone using the YoLink Smart Hub v0382 is at risk.

By Nick Cerne

Advisory

YoSmart YoLink Hub version 0382

Oct 2, 2025

The following document describes identified vulnerabilities in the YoLink Hub smart device version 0382.

By Nick Cerne

Industry

What Does “Good” Look Like in Red Teaming

Sep 22, 2025

Most red team exercises fail to deliver real value. They check compliance boxes but don't address actual business risks. Learn the difference between good and bad offensive security, plus the strategic framework that transforms red teaming from expense into ROI.

By Trevin Edgeworth

Industry

State of the SaaS Security Union

Sep 16, 2025

Two threat groups are exploiting SaaS at scale: one with phishing and data theft, the other with nation-state level tactics exploiting integrations and credentials. Here’s what you need to know and how to protect against the next wave.

By Brian Soby Bio

Technical Research

Demystifying 5G Security: Understanding the Registration Protocol

Sep 4, 2025

5G networks face critical security gaps during device registration. Despite improved architecture, unprotected initial messages and weak encryption negotiation create attack windows. Learn how to identify and mitigate these vulnerabilities.

By Drew Jones