The Red Canary Blog

Security teams need an ally to help defend against adversaries. Check out our blog for tips on increasing visibility, expanding detection coverage, and improving information security.
Clipping Silver Sparrow’s wings: Outing macOS malware before it takes flight
Microsoft Exchange server exploitation: how to detect, mitigate, and stay calm
Select Topic
Diary of a Detection Engineer: Babysitting child processes
Testing Linux runtime threat detection tools
What is normal? Profiling System32 binaries to detect DLL Search Order Hijacking
Linux 101: Demystifying the world’s most customizable operating system
Tales from decrypt: Differentiating decryptors from ransomware
A steady hand throughout security sea changes
Rclone Wars: Transferring leverage in a ransomware attack
Does signed mean trusted? The Mimikatz dilemma
We’re always looking for new experts to contribute interesting perspectives and improve our blog. Email us at with article pitches, feedback, or just to say hello!

Subscribe to our blog