Eresus Security Research Feed

Eresus Security Research Feed https://www.eresussec.com Research, advisories, and offensive security writing from Eresus Security. en-us Tue, 07 Apr 2026 16:47:01 GMT <![CDATA[Technical Analysis of Fortinet CVE-2026-35616: Actively Exploited API Vulnerability]]> https://www.eresussec.com/blog/fortinet-cve-2026-35616-analysis https://www.eresussec.com/blog/fortinet-cve-2026-35616-analysis Tue, 07 Apr 2026 00:00:00 GMT <![CDATA[Fortinet FortiClient EMS Zafiyeti (CVE-2026-35616) Analizi ve Acil Çözüm Rehberi]]> https://www.eresussec.com/blog/fortinet-cve-2026-35616-analizi https://www.eresussec.com/blog/fortinet-cve-2026-35616-analizi Tue, 07 Apr 2026 00:00:00 GMT <![CDATA[How to Build a Production-Grade gRPC Service in Go: A Step-by-Step Guide]]> https://www.eresussec.com/blog/eresuslog-open-source-grpc-logger https://www.eresussec.com/blog/eresuslog-open-source-grpc-logger Tue, 07 Apr 2026 00:00:00 GMT <![CDATA[Go ile Sıfırdan gRPC Servisi Nasıl Yazılır? Adım Adım Production Rehberi]]> https://www.eresussec.com/blog/eresuslog-acik-kaynak-grpc-logger https://www.eresussec.com/blog/eresuslog-acik-kaynak-grpc-logger Tue, 07 Apr 2026 00:00:00 GMT <![CDATA[Legacy SAST vs. AI-Powered Code Analysis: The Future of AppSec]]> https://www.eresussec.com/blog/traditional-sast-vs-ai-code-analysis https://www.eresussec.com/blog/traditional-sast-vs-ai-code-analysis Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[Cybersecurity for SMBs: A 5-Step Defense Strategy for Growing Teams]]> https://www.eresussec.com/blog/smb-cybersecurity-strategy https://www.eresussec.com/blog/smb-cybersecurity-strategy Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[Ne Sıklıkla Sızma Testi (Pentest) Yaptırmalısınız? (Yıllık Denetim Efsanesi)]]> https://www.eresussec.com/blog/sizma-testi-sikligi https://www.eresussec.com/blog/sizma-testi-sikligi Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[The Alphabet of AppSec: Understanding the Difference Between SAST, DAST, and IAST]]> https://www.eresussec.com/blog/sast-vs-dast-vs-iast https://www.eresussec.com/blog/sast-vs-dast-vs-iast Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[Uygulama Güvenliğinin Alfabesi: SAST, DAST ve IAST Arasındaki Farklar]]> https://www.eresussec.com/blog/sast-dast-iast-farki https://www.eresussec.com/blog/sast-dast-iast-farki Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[LLM ve RAG Veri Zehirlenmesi: Otonom AI Modellerine Nasıl Sızılır?]]> https://www.eresussec.com/blog/llm-rag-veri-zehirlenmesi https://www.eresussec.com/blog/llm-rag-veri-zehirlenmesi Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[LLM and RAG Data Poisoning: Infiltrating Autonomous AI Models]]> https://www.eresussec.com/blog/llm-rag-data-poisoning https://www.eresussec.com/blog/llm-rag-data-poisoning Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[KOBİ'ler İçin Siber Güvenlik: 5 Kritik Adımda Savunma Stratejisi]]> https://www.eresussec.com/blog/kobi-siber-guvenlik-stratejisi https://www.eresussec.com/blog/kobi-siber-guvenlik-stratejisi Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[How Often Should You Penetration Test? (Scrapping the Annual Audit Myth)]]> https://www.eresussec.com/blog/how-often-should-you-pentest https://www.eresussec.com/blog/how-often-should-you-pentest Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[Geleneksel SAST vs. AI Destekli Kod Analizi: Hangisi Gelecek?]]> https://www.eresussec.com/blog/geleneksel-sast-vs-ai-analizi https://www.eresussec.com/blog/geleneksel-sast-vs-ai-analizi Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[Black Box, White Box ve Grey Box Pentest Arasındaki Farklar: Hangisini Seçmelisiniz?]]> https://www.eresussec.com/blog/black-box-white-box-pentest https://www.eresussec.com/blog/black-box-white-box-pentest Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[Black Box, White Box vs Grey Box Penetration Testing: Which Should You Choose?]]> https://www.eresussec.com/blog/black-box-vs-white-box-pentest https://www.eresussec.com/blog/black-box-vs-white-box-pentest Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[BOLA ve IDOR Zafiyetinin Derinlikleri: REST ve GraphQL API'leri Nasıl Sömürülür?]]> https://www.eresussec.com/blog/api-bola-idor-uzman-rehberi https://www.eresussec.com/blog/api-bola-idor-uzman-rehberi Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[The Depths of BOLA and IDOR: Exploiting REST and GraphQL APIs]]> https://www.eresussec.com/blog/api-bola-idor-expert-guide https://www.eresussec.com/blog/api-bola-idor-expert-guide Mon, 06 Apr 2026 00:00:00 GMT <![CDATA[What is DevSecOps? Automating Security with the 'Shift-Left' Approach]]> https://www.eresussec.com/blog/what-is-devsecops-shift-left https://www.eresussec.com/blog/what-is-devsecops-shift-left Sun, 05 Apr 2026 00:00:00 GMT <![CDATA[Penetration Testing Pricing in 2026: Cost Factors & Budget Guide]]> https://www.eresussec.com/blog/pentest-pricing-2026 https://www.eresussec.com/blog/pentest-pricing-2026 Sun, 05 Apr 2026 00:00:00 GMT