Penetration testing March 1, 2021 Infosec Basic Snort Rules Syntax and Usage [updated 2021] In this series of lab exercises, we will demonstrate various techniques in writing Snort rules, from basic rules syntax to writing rules aimed at detecting...
Penetration testing February 22, 2021 Satyam Singh Exploiting NFS Share [updated 2021] Recently, while performing a network-level penetration testing activity for one of the clients, I came across a vulnerability which was used to compromise...
Penetration testing January 22, 2021 Raghu Chakravartula What is Enumeration? [updated 2021] Enumeration is defined as a process which establishes an active connection to the target hosts to discover potential attack vectors in the system, and the...
Penetration testing January 11, 2021 Howard Poston The Top 5 Pentesting Tools You Will Ever Need [updated 2021] A penetration test or “pentest” is a human-driven assessment of an organization’s security. One or more pentesters will be engaged by an organization...
Penetration testing October 13, 2020 Pedro Tavares Using Merlin agents to evade detection While penetration testing and Red Teaming are crucial to check a system’s security and to validate potential entry-points in the infrastructure, sometimes...
Penetration testing September 26, 2020 Satyam Singh Important SQLMap commands The SQLMap tool can be found in every penetration tester's toolbox. It is one of the most popular and powerful tools when it comes to exploiting SQL injection...
Penetration testing September 24, 2020 Howard Poston Zero-day Sophos XG Firewall vulnerability: An exploit guide for pentesters The Sophos XG Firewall recently had a publicly-reported zero-day vulnerability. The vulnerability in question was an SQL injection vulnerability that, if exploited,...
Penetration testing September 23, 2020 Rodika Tollefson Top 10 penetration testing certifications for security professionals [Updated 2020] As more organizations turn to penetration testing for identifying gaps in their defense systems, the demand for skilled penetration testers has been growing....
Penetration testing August 11, 2020 Howard Poston What are Black Box, Grey Box, and White Box Penetration Testing? [Updated 2020] Pentesters are apparently huge fans of colors. Different roles within pentesting assignments are designated as Red Team, Blue Team, Purple Team and others....
Penetration testing April 27, 2020 Susan Morrow The business value of the CompTIA PenTest+ employee certification Vulnerabilities in our technology-enabled systems and services are the Achilles heel of our extended IT networks. In 2019, CVE Details recorded 16,556 such...