The Red Canary Blog

Security teams need an ally to help defend against adversaries. Check out our blog for tips on increasing visibility, expanding detection coverage, and improving information security.
Four tools to consider if you’re adopting ATT&CK
Shutting Down OSX/Shlayer
Goalkeepers Win Games: How a Change in Mindset Can Help Defenders Be More Effective
Evaluating Endpoint Products in a Crowded, Confusing Market
Select Topic
Advanced persistence threats: to be a cybercriminal, think like a sysadmin
Endpoint Security vs Network Security: Where to Invest Your Budget
Meet Greg Bailey: former red team lead, now director of incident handling
Testing initial access with “Generate-Macro” in Atomic Red Team
It’s all fun and games until ransomware deletes the shadow copies
Black Hat: Detecting the unknown and disclosing a new attack technique
Exploring the phases of incident response: visibility, containment, & response
Frankenstein was a hack: the copy/paste cryptominer
We’re always looking for new experts to contribute interesting perspectives and improve our blog. Email us at with article pitches, feedback, or just to say hello!

Subscribe to our blog