Event
Join cybersecurity experts from Slack, Riot Games, EY and more at our upcoming roadshow. 

Blog

Thoughts, perspectives, and industry commentary from the Cobalt team.
Pentest Case Study: OAuth Open Redirect to Account Takeover

Cobalt Pentest Case Study: OAuth Redirect to Account Takeover

Cobalt Core Penteser Edu Garcia recently used an interesting attack method while working on a Cobalt pentest. In this blog, he shares how he did it and provides a solution to the vulnerability.
Pentester Guides Community
Aug 31, 2022
Est Read Time: 3 min
Read more
Pacman Attack Example

How Low Severity Vulns Become Critical: PACMAN Attack Example

Your latest pentest report was just delivered and there are a dozen findings with severity scores ranging from...
Cybersecurity Insights
Aug 30, 2022
Est Read Time: 3 min
Read more
Apoorva Joise

Pentester Spotlight: Apoorva Jois; Do you want to build or break?

Do you want to build or break? That's the million-dollar question that got Core Pentester Apoorva Jois interested in hacking. She walked us through her journey as a Pentester on the younger side of the industry.
Pentester Stories Community
Aug 26, 2022
Est Read Time: 3 min
Read more
File Upload Vulnerabilities

File Upload Vulnerabilities

This blog aims to demonstrate how applications can be compromised using simple file upload functionalities. Core Pentester Shubham Chaskar will show how to bypass common defense mechanisms and upload web shells.
Pentester Guides Community
Aug 24, 2022
Est Read Time: 8 min
Read more
What is a bot cover image

What Is a Bot?

A bot, short for robot, is an autonomous program that performs automatic repetitive tasks or mimics the actions of a...
Cybersecurity Insights
Aug 23, 2022
Est Read Time: 5 min
Read more
Then & Now: Nastor

Then & Now: Nastor

Nicolas Astor, aka "Nastor," has been a part of Cobalt's Core since December 2020. We sat with him to talk about how he and Cobalt have changed over the year.
Pentester Stories Community
Aug 22, 2022
Est Read Time: 2 min
Read more
Inc. 5000 cover image

Inc. Magazine Reveals Annual List of America’s Fastest-Growing Private Companies—the Inc. 5000

We are excited to announce that this week, Inc. magazine revealed its annual list of America’s fastest growing private...
Life at Cobalt
Aug 19, 2022
Est Read Time: 1 min
Read more
GraphQL explained

Graph Query Language Explained

Cobalt Core Pentester Harsh Bothra explains Graph Query Language and how attackers use it. Read his guide to learn how attackers think and take advantage.
Pentester Guides Community
Aug 18, 2022
Est Read Time: 8 min
Read more
Upcoming Cybersecurity Events

17 Upcoming Cybersecurity Events 2022

Cybersecurity requires synergy across many different people, processes, and technology. To achieve a strong security...
Cybersecurity Insights
Aug 15, 2022
Est Read Time: 7 min
Read more
    1 2 3 4 5

    Always get the latest

    Sign up to get Cobalt insights delivered right to your inbox so you never miss a story.

    More resources

    Learn pentesting best practices, read answers to our most common questions
    and get our technical docs.
    Flying Bug Image