Editorial — Volume 04 / Issue 21
Midnight.Logic
The signal from the dark
Threat IntelMalware & AttacksCompliance & LawEnterprise DefenseCyber CultureResearch
// long form

Whitepapers & reports

Primary research, working references, and long-form investigations from our editors and contributors. Free to download. No vendor co-branding.

Field report · 48p

Detection coverage in the average European SOC, measured

Twelve SOCs against the same simulated chain. Coverage gaps cluster in three predictable places.

Midnight Logic ResearchDownload →
Reference · 36p

The NIS2 incident-response runbook, for teams that actually run one

A working template for the 24-hour early warning, with sample escalations and named ownership.

L. Marchetti & editorsDownload →
Investigation · 62p

Quiet Harbor: the full technical write-up

Indicators, host artefacts, network telemetry, and a timeline reconstructed from nine victim environments.

N. VanceDownload →
Reference · 24p

An SBOM you can actually defend in court

What a useful Software Bill of Materials looks like when the question is liability, not procurement.

T. LenzDownload →
Field report · 41p

Identity-provider hardening: the five controls that move the needle

From a year of incident-response retainers, ranked by what actually changed attacker dwell time.

P. AnandDownload →
Investigation · 55p

The affiliate ransomware economy, quarter by quarter

Who consolidated, who disappeared, who showed up, and what their tooling looks like now.

D. KovačDownload →