Skip to content
Product
Icon-Platform
Platform

Explore the core capabilities of the Cado Platform.

 Icon-Environments
Environments

Discover the broad support that the Cado platform offers.

 Icon-Integrations
Integrations

Learn how the Cado platform integrates into your broader ecosystem.
Solutions
Use Cases
Icon-Cross-Cloud Investigations
Cross Cloud Investigations

Respond to incidents identified in AWS, Azure, and GCP in a single pane of glass.

 Icon-Container-Investigations
Container & K8s Investigations

Perform container investigations in EKS, AKS, GKE, and Kubernetes.

 Icon-Endpoint-Triage
Endpoint Triage

Automate endpoint triage for immediate insights and quick escalation.

 Icon-BEC-Compromise
SaaS Investigations

Analyze critical SaaS logs to investigate Business Email Compromise.

 Icon-Incident-Containment
Cloud Detection & Response (CDR)

Marry threat detection with forensic context to expedite response.

Icon-Evidence-Preservation
Evidence Preservation

Capture data immediately and preserve it before it disappears.
Cado For
DFIR
SOC
MSSPs
Partners
Government
Resources
Icon-Report
All Resources

Explore Cado Security's entire content library.

 Icon-Blog
Blog

Timely commentary from the Cado Security team.

 Icon-Playbook
Playbooks

Best practices for investigating and responding to threats.

Icon-Cheat-Sheet
Cheat Sheets

Quick tips for investigating and responding to incidents.

 Icon-News
News

The latest Cado company announcements, press, and more.

 Icon-Community
Community

Access to our free edition of the Cado platform.

 Icon-documentation
Documentation

Technical documentation on how to best leverage the Cado platform.

 White Paper 80x80
Wiki

Everything you need to know about cloud security and cloud forensics.

Company
Icon-About
About

Learn more about the Cado Security mission, vision, and team.

 Icon-Careers
Careers

Check out current career opportunities at Cado Security.

 Icon-Incidident-Response Preparedness-II
Cado Security Labs

The research and development division at Cado Security
Get a Demo
    Get a Demo
      curve design on left

      Posts by Nate Bill

      blog post featured image
      blog icon Featured Post | Product Updates

      What's New in the Cado Platform Q1 2024 Recap

      April 23, 2024

      Over the past quarter, the Cado team has been hard at work bringing new features and enhancements to the Cado platform. Here's an overview...

      Continue Reading
      cloud image
      Research & Threat Intel icon
      blog icon Research & Threat Intel
      Part 2: Investigating Docker Hijacking Malware - A Deep Dive into ELF Binary Analysis
      October 18, 2024

      As the adoption of containerized environments like Docker continues to rise, so does the interest of cybercriminals in...

      Continue Reading
      Research & Threat Intel icon
      blog icon Research & Threat Intel
      Part 1: Investigating Docker Hijacking Malware - Analyzing the Docker Host with Packet and Disk Forensics
      October 17, 2024

      Docker's widespread adoption in cloud environments has made it a prime target for attackers seeking to exploit its API or...

      Continue Reading
      Research & Threat Intel icon
      blog icon Research & Threat Intel
      WARPscan: Cloudflare WARP Abused to Hijack Cloud Services Blog
      July 17, 2024

      Cado Security researchers have observed several recent campaigns making use of Cloudflare’s WARP service in order to attack...

      Continue Reading
      Research & Threat Intel icon
      blog icon Research & Threat Intel
      From Dormant to Dangerous: P2Pinfect Evolves to Deploy New Ransomware and Cryptominer
      June 25, 2024

      Introduction P2Pinfect is a rust-based malware covered extensively by Cado Security in the past. It is a fairly...

      Continue Reading
      blog post icon
      Cerber Ransomware: Dissecting the three heads
      April 17, 2024

      Introduction Cado Security Labs recently received reports of the Cerber ransomware being deployed onto servers running the...

      Continue Reading
      blog post icon
      The Nine Lives of Commando Cat: Analysing a Novel Malware Campaign Targeting Docker
      February 1, 2024

      By Nate Bill & Matt Muir Summary Commando Cat is a novel cryptojacking campaign exploiting Docker for Initial Access The...

      Continue Reading