Behind the Firewall ft. Stu Skove

by Morgan Prost / May 21, 2026

What happens if your tools get it wrong? You trust your tools, but what happens when they get it wrong? While reviewing a newer team member’s finding, our Penetration Tester, Stu noticed a scanner had misidentified a vulnerability as Server-Side Template Injection (SSTI). Through manual testing, he discovered it was a Ruby Code Injection, an error that escalated into full remote command execution (RCE) on the server. From a web…

Read More

Behind the Firewall ft. Edmundo Delgado Jr.

by Morgan Prost / May 21, 2026

SOC 2 isn’t just about external validation. You may have seen the recent chatter claiming SOC 2 is a waste of time. We hear it too—usually from teams who treated compliance as a checkbox instead of a strategy. In today’s hyper‑competitive, security‑conscious market, customers expect more than features. They expect trust. Our Information Security Auditor, Edmundo Delgado Jr., explains why SOC 2 continues to matter for enterprise buyers: “It does matter because stakeholders notice…

Read More