Live DEMO
Join us for a live demo of our pentest for AI and LLMs.
Register Now
Platform
Cobalt Platform
Modern offensive security platform
Dynamic Application Security Testing
Automated application security scanning
Pricing
Explore the flexible Cobalt credit model
Services
Application Security
Secure your apps without slowing down development
Application Pentest
Secure Code Review
LLM Pentest
Network Security
Protect systems and data with offensive security
Network Pentest
Red Teaming
Cloud Security
Secure your cloud infrastructure
Brand Protection
Safeguard your reputation
Digital Risk Assessment
Device Security
Secure your devices from threats
Device Hardening
Solutions
PtaaS
On-demand Pentesting as a Service
Goal-Based Pentest
Simulated attack to test your security defenses
Compliance
Comprehensive pentesting for compliance
Secure SDLC
Develop securely and deploy confidently
Offensive Security Program
Minimize risk efficiently and effectively
For Small Businesses
Pentesting for growing business needs
For IT & Information Security Teams
Explore the benefits of an offensive security platform
For DevOps Teams
Explore the benefits of continuous security testing
About
Why Cobalt
Why сustomers сhoose Cobalt
About Us
Who we are
Leadership
The minds driving our mission forward
Cobalt Core
Community of skilled, vetted security experts
Partners
Explore Cobalt's partner network
Customers
Real customer stories straight from the source
Press
Read the latest news at Cobalt
Careers
Redefine and reimagine modern offensive security
Contact Us
Connect with a team member
GigaOm Radar Report
Featured
Download
Resources
Resource Library
Rethinking offensive security
Blog
Insights from security leaders, pentesters, and developers
Events & Webinars
Explore thought-provoking security topics
InfoSec Podcast
Explore the stories of cybersecurity experts
State of Pentesting Report 2025
Featured
Download
login
get started
Platform
Cobalt Platform
Modern offensive security platform
Dynamic Application Security Testing
Automated application security scanning
Pricing
Explore the flexible Cobalt credit model
Services
Application Security
Secure your apps without slowing down development
Application Pentest
Secure Code Review
LLM Pentest
Network Security
Protect systems and data with offensive security
Network Pentest
Red Teaming
Cloud Security
Secure your cloud infrastructure
Brand Protection
Safeguard your reputation
Digital Risk Assessment
Device Security
Secure your devices from threats
Device Hardening
Solutions
PtaaS
On-demand Pentesting as a Service
Goal-Based Pentest
Simulated attack to test your security defenses
Compliance
Comprehensive pentesting for compliance
Secure SDLC
Develop securely and deploy confidently
Offensive Security Program
Minimize risk efficiently and effectively
For Small Businesses
Pentesting for growing business needs
For IT & Information Security Teams
Explore the benefits of an offensive security platform
For DevOps Teams
Explore the benefits of continuous security testing
About
Why Cobalt
Why сustomers сhoose Cobalt
About Us
Who we are
Leadership
The minds driving our mission forward
Cobalt Core
Community of skilled, vetted security experts
Partners
Explore Cobalt's partner network
Customers
Real customer stories straight from the source
Press
Read the latest news at Cobalt
Careers
Redefine and reimagine modern offensive security
Contact Us
Connect with a team member
GigaOm Radar Report
Featured
Download
Resources
Resource Library
Rethinking offensive security
Blog
Insights from security leaders, pentesters, and developers
Events & Webinars
Explore thought-provoking security topics
InfoSec Podcast
Explore the stories of cybersecurity experts
State of Pentesting Report 2025
Featured
Download
login
get started
Live DEMO
Join us for a live demo of our pentest for AI and LLMs.
Register Now
Blog
Thoughts, perspectives, and industry commentary from the Cobalt team.
Filter by Topic
Agile Pentesting
AI Pentesting
API Pentesting
Awards
Cloud Security
Cobalt Core
Compliance
Customer Stories
Cybersecurity Insights
Cybersecurity Services
DevSecOps
Events
Industry Breakdowns
Life at Cobalt
Mobile Application Pentesting
Modernizing Pentesting
NEWS
OWASP Top 10
Partners
Pentester Guides
Pentester Stories
Pentesting: Tips, Tricks, Advice
Product Updates
PTaaS
State of Pentesting
Web Application Pentesting
How to Execute an XML External Entity Injection (XXE)
What's XXE? An XML External Entity vulnerability is a type of attack against an application that parses XML input. This...
Pentester Guides
Nov 26, 2020
Est Read Time: 4 min
Read more
Pentesting and DevOps: An Engineer's Perspective
In a healthy organization, engineering and security teams should work in a close and efficient manner. I’ve spent years...
Modernizing Pentesting
Nov 24, 2020
Est Read Time: 5 min
Read more
Pentester Spotlight: Stefan Nicula
Stefan Nicula is a threat researcher and pentester with over 5 years of experience. His areas of expertise are in...
Pentester Stories
Nov 23, 2020
Est Read Time: 6 min
Read more
Cloudy Features: 5 Best Practices for AWS, Azure and Cloud Security
As appeared in Cybersecurity Magazine.
Cloud Security
Nov 17, 2020
Est Read Time: 4 min
Read more
A Pentester’s Guide to Cross-Site Request Forgery (CSRF)
Cross-Site Request Forgery (CSRF) is an attack that forces an end user to execute unwanted actions on a web application...
Pentester Guides
Nov 13, 2020
Est Read Time: 4 min
Read more
Lessons on Burnout: How to Protect Yourself & Your Team
Burnout can have 4 to 12 stages. According to Help Guide, there are even red flags that one can look out for. These red...
Cobalt Core
Nov 12, 2020
Est Read Time: 4 min
Read more
Cobalt Platform Deep Dive: New and Improved Navigation
What is new and improved navigation? There are a few core principles that web-based applications, especially SaaS or...
Cybersecurity Insights
Nov 1, 2020
Est Read Time: 2 min
Read more
A Pentester’s Guide to Cross-Site Scripting (XSS)
Examine a common security vulnerability, Cross-Site Scripting (XSS).
Pentester Guides
Oct 30, 2020
Est Read Time: 8 min
Read more
Pentester Spotlight: Nikhil Srivastava
Nikhil Srivastava has been a top-performing pentester on the Cobalt platform for the past five years. He is an active...
Pentester Stories
Oct 28, 2020
Est Read Time: 6 min
Read more
54
55
56
57
58
Always get the latest
Sign up to get Cobalt insights delivered right to your inbox so you never miss a story.
More resources
Learn pentesting best practices, read answers to our most common questions
and get our technical docs.
resources
customer stories
docs
.svg){kind=icon}
.svg){kind=icon}
