<?xml version="1.0" encoding="utf-8"?>
<rss version="2.0"><channel><title>Peakhour.IO - DevSecOps</title><link>https://www.peakhour.io/</link><description></description><lastBuildDate>Fri, 19 Jun 2026 00:00:00 +1000</lastBuildDate><item><title>Shadow APIs Are Account-Abuse Paths</title><link>https://www.peakhour.io/blog/shadow-apis-account-abuse/</link><description>&lt;p&gt;Shadow APIs matter because attackers do not care whether a route is documented. Mobile, partner, browser-backed, and legacy APIs can all become account-abuse paths when they remain outside normal controls.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jun 2026 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2026-06-19:/blog/shadow-apis-account-abuse/</guid><category>API Security</category><category>API Security</category><category>Shadow APIs</category><category>Account Protection</category><category>Bot Management</category><category>Threat Detection</category><category>DevSecOps</category></item><item><title>Agentic AI vs. Your API</title><link>https://www.peakhour.io/blog/agentic-ai-vs-your-api/</link><description>&lt;p&gt;Understand the shift from scripted bots to reasoning AI agents and how to adapt your security strategy for this new reality.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 01 Sep 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-09-01:/blog/agentic-ai-vs-your-api/</guid><category>AI</category><category>Bot Management</category><category>API Security</category><category>Threat Detection</category><category>DevSecOps</category><category>Machine Learning</category><category>Credential Stuffing</category></item><item><title>Protecting Against a Share Point Zero Day Vulnerability with Network Fingerprinting</title><link>https://www.peakhour.io/blog/protecting-against-share-point-zero-day/</link><description>&lt;p&gt;Analysis of attempts to exploit a recent Share Point zero day vulnerability reveal network fingerprinting and classification is a robust defense.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Wed, 23 Jul 2025 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-07-23:/blog/protecting-against-share-point-zero-day/</guid><category>Security</category><category>Threat Detection</category><category>Credential Stuffing</category><category>Account Protection</category><category>DevSecOps</category><category>DDoS</category><category>Application Security</category></item><item><title>AI as the Translator Between Human and Machine</title><link>https://www.peakhour.io/blog/ai-the-next-interface/</link><description>&lt;p&gt;We've gone from command lines to graphical interfaces. The next great leap in how we interact with computers won't be seen, it will be understood. AI is poised to become the ultimate translator between human intent and machine execution.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Sat, 19 Jul 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-07-19:/blog/ai-the-next-interface/</guid><category>Interest</category><category>Bot Management</category><category>Machine Learning</category><category>DevSecOps</category><category>Technical</category></item><item><title>From Research Paper to Running Code</title><link>https://www.peakhour.io/blog/from-paper-to-code-with-ai/</link><description>&lt;p&gt;Exploring how AI can dramatically accelerate the process of turning complex academic research into functional code, with examples from anomaly detection to small LLMs.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 18 Jul 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-07-18:/blog/from-paper-to-code-with-ai/</guid><category>Interest</category><category>DevSecOps</category><category>Technical</category><category>Machine Learning</category></item><item><title>My Programming Journey</title><link>https://www.peakhour.io/blog/my-programming-journey-from-dos-to-ai/</link><description>&lt;p&gt;A personal journey through the evolution of programming, from the early days of DOS and BASIC to the current age of AI-assisted coding.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Thu, 17 Jul 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-07-17:/blog/my-programming-journey-from-dos-to-ai/</guid><category>Interest</category><category>DevSecOps</category></item><item><title>How AI Agents Are Writing Custom Exploits</title><link>https://www.peakhour.io/blog/ai-agents-custom-exploits/</link><description>&lt;p&gt;AI agents with reasoning capabilities like DeepSeek are revolutionizing exploit development, marking the end of traditional security approaches based on static rules and patterns.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 17 Feb 2025 14:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-02-17:/blog/ai-agents-custom-exploits/</guid><category>Security</category><category>Application Security</category><category>Threat Detection</category><category>DevSecOps</category><category>Bot Management</category><category>API Security</category><category>DDoS</category></item><item><title>Why Reasoning Models Like DeepSeek Change Everything</title><link>https://www.peakhour.io/blog/agentic-ai-deepseek-changes-everything/</link><description>&lt;p&gt;How open reasoning models transform automation from rigid scripts to autonomous agents, fundamentally changing our approach to security and digital interactions.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 03 Feb 2025 08:13:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-02-03:/blog/agentic-ai-deepseek-changes-everything/</guid><category>Security</category><category>DevSecOps</category><category>Bot Management</category><category>Credential Stuffing</category><category>Machine Learning</category></item><item><title>Anti-Detect Browsers</title><link>https://www.peakhour.io/blog/anti-detect-browsers-application-security-threat/</link><description>&lt;p&gt;Anti-detect browsers represent one of the most sophisticated threats facing modern web applications and APIs. Learn how these tools work, why they pose a significant threat to application security, and how modern security platforms can detect and mitigate their use.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 15 Jan 2025 10:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-01-15:/blog/anti-detect-browsers-application-security-threat/</guid><category>Bots</category><category>Bot Management</category><category>Threat Detection</category><category>Application Security</category><category>Browser Fingerprinting</category><category>Fingerprinting</category><category>DevSecOps</category></item><item><title>Next-Generation Application Security Defence Strategies</title><link>https://www.peakhour.io/blog/ai-powered-cyber-threats-application-security-defence/</link><description>&lt;p&gt;Comprehensive analysis of AI-powered cyber threats and how modern application security platforms defend against machine learning-driven attacks. Learn advanced defence strategies for the AI cybersecurity arms race.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 15 Nov 2024 14:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-11-15:/blog/ai-powered-cyber-threats-application-security-defence/</guid><category>Security</category><category>Threat Detection</category><category>Machine Learning</category><category>DevSecOps</category><category>Bot Management</category><category>DDoS</category><category>Application Security</category></item><item><title>Managing Bots For Application Security</title><link>https://www.peakhour.io/blog/enterprise-bot-management-application-security/</link><description>&lt;p&gt;Comprehensive guide to enterprise bot management for modern application security platforms. Learn how to protect applications and APIs from sophisticated bot threats including anti-detect browsers, credential stuffing, and automated attacks targeting DevOps environments.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Sun, 15 Sep 2024 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-09-15:/blog/enterprise-bot-management-application-security/</guid><category>Bots</category><category>Bot Management</category><category>API Security</category><category>Credential Stuffing</category><category>Account Protection</category><category>DevSecOps</category><category>Application Security</category></item><item><title>Application Security for Financial Services Under CPS 234</title><link>https://www.peakhour.io/blog/credential-stuffing-defence-cps-234-compliance/</link><description>&lt;p&gt;Comprehensive analysis of credential stuffing threats against Australian financial institutions and how application security platforms help meet CPS 234 disclosure requirements whilst preventing account takeover attacks.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Mon, 29 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-29:/blog/credential-stuffing-defence-cps-234-compliance/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Fraud Prevention</category><category>Application Security</category><category>DevSecOps</category><category>PCI DSS</category></item><item><title>2024 Survey Insights</title><link>https://www.peakhour.io/blog/credential-stuffing-and-account-takeover-survey-2024/</link><description>&lt;p&gt;Our 2024 survey of Australian CISOs and CTOs looks at how businesses are approaching account protection, particularly credential stuffing and residential proxies.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Tue, 16 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-16:/blog/credential-stuffing-and-account-takeover-survey-2024/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Residential Proxies</category><category>API Security</category><category>Bot Management</category><category>DevSecOps</category></item><item><title>Addressing Key Cloud Security Categories</title><link>https://www.peakhour.io/blog/peakhour-cloud-security-post-wiz/</link><description>&lt;p&gt;An analysis of Peakhour's role in addressing key cloud security categories identified in recent industry analysis, demonstrating its comprehensive approach to modern cloud security challenges.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 01 May 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-05-01:/blog/peakhour-cloud-security-post-wiz/</guid><category>Security</category><category>API Security</category><category>Threat Detection</category><category>Account Protection</category><category>DevSecOps</category><category>Application Security</category><category>CDN</category></item><item><title>Managing Breached Credential Usage</title><link>https://www.peakhour.io/blog/breached-credentials-protection-application-security-platform/</link><description>&lt;p&gt;How breached credential checks and risk signals help detect credential stuffing without adding unnecessary login friction.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 15 Mar 2024 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-03-15:/blog/breached-credentials-protection-application-security-platform/</guid><category>Account Protection</category><category>Credential Stuffing</category><category>Account Protection</category><category>DevSecOps</category><category>Application Security</category><category>Threat Detection</category><category>API Security</category></item><item><title>Dive into CVSS Scores</title><link>https://www.peakhour.io/blog/confluence-cvss-vectors/</link><description>&lt;p&gt;Understand CVSS by examining the Atlassian CVE-2023-22515 and CVE-2023-22518.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 10 Nov 2023 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-11-10:/blog/confluence-cvss-vectors/</guid><category>Interest</category><category>Threat Detection</category><category>DevSecOps</category><category>Application Security</category><category>Anomaly Detection</category><category>Credential Stuffing</category><category>Core Web Vitals</category></item><item><title>A Risk Based Approach To Vulnerability Scoring</title><link>https://www.peakhour.io/blog/epss-explained/</link><description>&lt;p&gt;An in-depth exploration of EPSS, its data-driven approach to assessing cybersecurity threats, and how it complements CVSS.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 10 Nov 2023 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-11-10:/blog/epss-explained/</guid><category>Interest</category><category>Threat Detection</category><category>Application Security</category><category>DevSecOps</category><category>Anomaly Detection</category><category>DDoS</category><category>Credential Stuffing</category></item><item><title>A Tale Of Two Scoring Systems</title><link>https://www.peakhour.io/blog/a-tale-of-two-scoring-systems-and-atlassian-confluence/</link><description>&lt;p&gt;Reviewing the CVSS an EPSS CVE scoring systems in light of the Atlassian Confluence-Aggedon&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 08 Nov 2023 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-11-08:/blog/a-tale-of-two-scoring-systems-and-atlassian-confluence/</guid><category>Security</category><category>Credential Stuffing</category><category>Threat Detection</category><category>Account Protection</category><category>DevSecOps</category><category>SOC 2</category></item><item><title>ModSecurity’s End-of-Life</title><link>https://www.peakhour.io/blog/modsecurity-eol-modern-application-security-platforms/</link><description>&lt;p&gt;ModSecurity's end-of-life marks a pivotal moment in application security evolution. Discover how modern Application Security Platforms are advancing beyond traditional WAF approaches to provide comprehensive protection for web applications and APIs at the edge.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 16 Oct 2023 13:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-10-16:/blog/modsecurity-eol-modern-application-security-platforms/</guid><category>Security</category><category>Application Security</category><category>DevSecOps</category><category>API Security</category><category>DDoS</category><category>Threat Detection</category><category>SOC 2</category></item><item><title>The Rise of OpenBullet</title><link>https://www.peakhour.io/blog/the-rise-of-openbullet/</link><description>&lt;p&gt;A comprehensive look at OpenBullet, its capabilities, and the implications for cybersecurity in the face of its misuse.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 01 Sep 2023 14:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-09-01:/blog/the-rise-of-openbullet/</guid><category>Security</category><category>Bot Management</category><category>Application Security</category><category>DevSecOps</category><category>Account Protection</category><category>Credential Stuffing</category><category>Threat Detection</category></item><item><title>Residential Proxies and MITRE Framework</title><link>https://www.peakhour.io/blog/residential-proxies-mitre-framework/</link><description>&lt;p&gt;Explore residential proxies within the context of the MITRE ATT&amp;amp;CK framework, highlighting the security implications and ethical considerations.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 17 May 2023 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-05-17:/blog/residential-proxies-mitre-framework/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>Account Protection</category><category>Credential Stuffing</category><category>Threat Detection</category><category>DDoS</category><category>DevSecOps</category></item><item><title>Advanced Anomaly Detection</title><link>https://www.peakhour.io/blog/advanced-anomaly-detection-rrcf-application-security/</link><description>&lt;p&gt;Deep dive into Robust Random Cut Forest (RRCF) implementation for real-time anomaly detection in Application Security Platforms. Learn how advanced machine learning algorithms enhance threat detection and automated response capabilities.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 15 May 2023 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-05-15:/blog/advanced-anomaly-detection-rrcf-application-security/</guid><category>Security</category><category>Threat Detection</category><category>Anomaly Detection</category><category>DDoS</category><category>DevSecOps</category><category>Bot Management</category><category>Application Security</category></item><item><title>Application Performance Optimisation</title><link>https://www.peakhour.io/blog/introduction-to-website-performance-testing/</link><description>&lt;p&gt;A practical primer for finding where website requests lose time, from cache state and origin work to browser rendering.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Sat, 12 Sep 2020 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2020-09-12:/blog/introduction-to-website-performance-testing/</guid><category>Performance</category><category>Application Security</category><category>DevSecOps</category><category>Drupal</category><category>DDoS</category><category>Threat Detection</category><category>Rate Limiting</category></item></channel></rss>