LIVE DEMO
Learn how Cobalt’s Pentest as a Service (PtaaS) model makes you faster, better, and more efficient.

Cobalt Is Now ISO 27001 Certified

Combined with our CREST and SOC 2 Type II certifications, this achievement highlights our commitment to keeping customer and partner data safe. 

Cybersecurity Certifications, how much do they really matter?

Cybersecurity certifications can benefit individuals with 1-4 years of experience when looking for new job opportunities. Certifications alone don't necessarily make someone a good pentester and should be considered in conjunction with professional experience.
Feb 1, 2023
Est Read Time: 3 min

Hacking Web Cache - Deep Dive in Web Cache Poisoning Attacks

Web cache poisoning is an attack where an attacker takes advantage of flaws in the caching mechanism. They attempt to store an altered and malicious response in the cache entry, forcing the website to serve malicious information to its users.  Core Pentester Harsh Bothra deep dives into these attacks and remediations.
Jan 31, 2023
Est Read Time: 11 min

Pentester Spotlight: Ayubali Beleri

Our first Pentester Spotlight of the year features Core Pentester Ayubali Beleri. Beleri is celebrating his one-year mark with Cobalt and came from a developer background. Learn more about Beleri in his Pentester Spotlight.
Jan 30, 2023
Est Read Time: 2 min

Cobalt Achieved Record Pentests in 2022, Expanded PtaaS Adoption

Notable industry recognition from analysts and high-value awards proves Cobalt is the leader in PtaaS, and sparks the hiring of Chief Sales Officer Jerri Allan
Jan 26, 2023
Est Read Time: 5 min

Man-In-The-Middle Attacks: How to Detect and Prevent Them

This article covers the steps cybercriminals commonly take to execute different MITM attacks, and how security teams can detect and prevent them.
Jan 24, 2023
Est Read Time: 5 min

OAuth Vulnerabilites Pt. 1

Welcome to part one of OAuth Vulnerabilities. Core Pentester Shubham Chaskar overviews Oauth, commonly used grant types, entities, misconfiguration, and more.
Jan 23, 2023
Est Read Time: 10 min

Then & Now: Harsh Bothra

Core Pentester Harsh Bothra joined Cobalt a little over two years ago. Since then, he has become a Pentest Lead and worked on endless engagements. He takes this time to reflect on how things have changed since his first test.
Jan 19, 2023
Est Read Time: 3 min

Faster and More Affordable Cybersecurity Compliance With SmartComply

Today we give the stage to SmartComply, whose app helps rapidly expanding businesses reduce time and money spent on compliance. 
Jan 17, 2023
Est Read Time: 2 min

A Dive into Client-Side Desync Attacks

A client-side desync, a.k.a CSD, is an attack in which the victim's web browser is tricked into desynchronizing its connection to the vulnerable website. Core Pentester Harsh Bothra takes a look at how attackers can find these vulnerabilities in the wild.
Jan 16, 2023
Est Read Time: 7 min
    1 2 3 4 5

    Always get the latest

    Sign up to get Cobalt insights delivered right to your inbox so you never miss a story.

    More resources

    Learn pentesting best practices, read answers to our most common questions
    and get our technical docs.