Post Archive
Post Archive
Our Red Team’s Favorite Penetration Testing Tools in 2025 (And How We Use Them)
When it comes to red team operations, the tools you choose can make or break the engagement. From initial reconnaissance to post-exploitation, having a streamlined,…
Read more >

Zero to Hero: How Our Red Team Turned a Sticky Note Into Full Cloud Compromise
“The weakest link in your security chain might be sitting right on your desk.” At OP Innovate, our CREST-certified red team is trained to think…
Read more >

How MSSPs Are Turning Penetration Testing Into Recurring Revenue with WASP
When OP Innovate first launched WASP in 2022, we weren’t chasing unicorn status or massive VC rounds. We were focused on fixing a real problem:…
Read more >

Eye of the Storm: Dissecting the Playbook of Cyber Toufan
How an Iranian-Linked Group Turned Simple Security Weaknesses into Mass Breaches By Matan Matalon, Filip Dimitrov The digital frontlines of the Israel-Gaza conflict have rapidly…
Read more >

SAP Zero – Frostbite: How Russian RaaS Actor Qilin Exploited CVE-2025-31324 Weeks Before its Public Disclosure
CVE-2025-31324 hit the security world like a tsunami - an easily exploitable SAP vulnerability affecting enterprise environments across the globe. But while most assumed its…
Read more >

Disrupting Handala: Did OP Innovate Help Silence a Major Cyber Threat?
The Handala group has been one of the most active threat actor groups targeting Israeli organizations and digital infrastructure since late 2023. On February 9th,…
Read more >

Inside RSA 2025: Our Biggest Takeaways from the World’s Leading Cybersecurity Conference
Expanding our knowledge and innovating is at the core of what we do at OP Innovate. That’s why attending the RSA conference for the first…
Read more >

6 Reasons Why Ongoing Pentesting is More Effective Than Periodic Assessments
For long, penetration testing served as a snapshot in time for security posture. While this approach helps organizations identify critical vulnerabilities, it fails to account…
Read more >

BurpX: Hack Smarter, Report Faster
The Burp Suite AI Reporter Plugin is designed to eliminate the repetitive, time-consuming aspects of vulnerability documentation, allowing cyber researchers to dedicate their expertise to…
Read more >
