Penetration testing

In the first part of this article, we have discussed the iPhone application traffic analysis. The second part of the article covered the privacy issues and...

Security of a website is very crucial thing for any organization or for personal websites. It's always advised to check the security of the website because...

Testing firewall and IDS rules is a regular part of penetration testing or security auditing. However, because of the unique complexity involved of different...

The first phase in security assessment is to focus on collecting as much information as possible about a target application. According to OWASP, information...

You close the lid of your laptop; it's been a productive couple of days. There are a few things that could be tightened up, but overall the place isn't doing...

This article will talk about the maintaining access step in a penetration test. After an attacker has broken into the system and got access, escalated privileges...

winAUTOPWN is a minimal Interactive Exploit Framework which acts as a frontend for quick systems vulnerability exploitation. It is a collection of remote exploits...

The cost and quality of penetration tests vary wildly between different vendors. As a response to those differences, a group of security professionals have...

Based on questions I've gotten over the years and specifically in class, I've decided that we need to address some basic skills that every penetration tester...

Since I get asked a lot which tools I typically use for doing certain parts of testing, I've decided to compile a short list of stuff I might use in an engagement....