It's Okay, We're All On the SameSite
With Google’s recent announcement that all cookies without a SameSite flag will be treated as ...
Continue Reading
Top 10 Blog Lists
We have written a lot over the past year and beyond, and we wanted to provide you with our Top 10 ...
Continue Reading
In Case of Fire: Break Windows
When a client calls us to pentest a web application that is only available in Internet Explorer. I ...
Continue Reading
IAM Access Analyzer Review
TL;DR – This is a free tool that helps solve one of the biggest security problems when working in ...
Continue Reading
Security Review of Nest Camera
I love tinkering with home automation and security solutions. The simplicity of turning on a light ...
Continue Reading
IAM Root: AWS IAM Simulator Tutorial
If you needed yet another reason to be paranoid about your personal information being exposed, the ...
Continue Reading
My Experience in the CISSP Mentorship Program
A little while back, I was talking with a friend of mine about the different services that Secure ...
Continue Reading
Game Console Hacking: Part 1 Lab Setup
This is the first in a series of blog posts on my journey through video game hacking and security. ...
Continue Reading
Using Components with Known Vulnerabilities
[Note: There is an updated version of this article] When dealing with cyber vulnerabilities, there ...
Continue Reading
Better API Penetration Testing with Postman – Part 4
This is the final part of this series on putting together a better API testing tool-chain. In Part ...
Continue Reading
Computers are People Too
There are those rare times during pen tests, when you are on a client’s network and you don’t have ...
Continue Reading