Building Aegis Sovereign — Our proprietary platform, actively deployed and improving daily. See the platform →
Security Intelligence

The Kaimz Research Blog

CVE writeups, adversary techniques, threat intelligence, and security research — published by the community.

Threat Intelligence  ·  Featured

What 24/7 MDR Actually Means: Inside the Kaimz Security Operations Centre

The Problem with “24/7 Monitoring” Every MSSP claims 24/7 monitoring. The question is: monitoring what, by whom, and what happens when something fires at 3 AM on a...

kaimz2037 · May 31, 2026 · 3 min read Read article →
All Posts Blog CVE Analysis Red Team Threat Intelligence Tools & Research
Red Team
Social Engineering Assessments: Testing the Human Firewall
The Most Underestimated Attack Vector In a survey of major breaches between 2020 and 2025, social engineering was the initial access vector…
kaimz2037 3 min · May 31
Tools & Research
The Complete Guide to SOC 2 Type II for Canadian Tech Companies
Why SOC 2 Matters More Than Ever for Canadian SaaS In 2026, SOC 2 Type II has become a non-negotiable requirement for…
kaimz2037 3 min · May 31
Threat Intelligence
Inside a 2-Hour Ransomware Containment: Our Incident Response Playbook
The 2:00 AM Call At 02:17, an automated alert from Aegis Sovereign fired: anomalous SMB lateral movement across 14 hosts in a…
kaimz2037 3 min · May 31
CVE Analysis
Cloud Security Assessments: What We Test Across AWS, Azure, and GCP
The Cloud Security Problem in 2026 The majority of significant cloud breaches in 2026 share a common thread: they were not caused…
kaimz2037 2 min · May 31
Red Team
How We Run Penetration Tests: The Kaimz Engagement Methodology
What Most Penetration Tests Get Wrong The security industry has a penetration testing problem. Too many “pentests” are little more than automated…
kaimz2037 4 min · May 31
Threat Intelligence
Aegis Sovereign: How Our Zero-Trust ECDSA Architecture Actually Works
Why We Built Aegis from Scratch After two years of operating as a managed security service provider, we kept running into the…
kaimz2037 3 min · May 31
Tools & Research
Building a Home Lab for Malware Analysis: Complete 2026 Guide
Why a Dedicated Malware Lab? Analysing malware in a properly isolated environment is non-negotiable. This guide walks through building a practical, cost-effective…
kaimz2037 1 min · May 31
Threat Intelligence
Anatomy of a Phishing Kit: Reverse Engineering a BEC Campaign
Introduction Business Email Compromise (BEC) attacks cost organizations billions annually. In this analysis, we dissect a live phishing kit targeting financial services…
kaimz2037 2 min · May 31
Red Team
Active Directory Lateral Movement: Beyond Pass-the-Hash
Introduction Modern Active Directory environments have largely mitigated Pass-the-Hash through Credential Guard and Protected Users. This post covers three lesser-known lateral movement…
kaimz2037 1 min · May 30
CVE Analysis
CVE-2026-1337: Critical RCE in Widely Used VPN Gateway
Overview A critical remote code execution vulnerability (CVE-2026-1337, CVSS 9.8) was discovered in a widely deployed VPN gateway appliance. This writeup documents…
kaimz2037 1 min · May 30
Blog
Welcome to Kaimz: A Platform for Security Researchers
Kaimz is the cybersecurity research and intelligence platform for professionals, researchers, and practitioners. Share your CVE writeups, vulnerability research, threat intelligence, and…
kaimz2037 1 min · May 30
Contribute

Share your security research

CVE writeups, red team walkthroughs, CTF solutions, malware analysis — all welcome. Free to publish, forever.

Create Account Learn More