NEW FEATURE
Cobalt PtaaS + DAST combines manual pentests and automated scanning for comprehensive applications security.
Get a demo
Platform
Cobalt Platform
Modern offensive security platform
Dynamic Application Security Testing
Automated application security scanning
Pricing
Explore the flexible Cobalt credit model
Services
Application Security
Secure your apps without slowing down development
Application Pentest
Secure Code Review
Threat Modeling
Network Security
Protect systems and data with offensive security
Network Pentest
Red Teaming
Cloud Security
Secure your cloud infrastructure
Brand Protection
Safeguard your reputation
Digital Risk Assessment
Social Engineering
Device Security
Secure your devices from threats
Device Hardening
IoT Testing
Solutions
PtaaS
On-demand Pentesting as a Service
Pentest Program Management
Optimize pentesting with proven management
Goal-Based Pentest
Simulated attack to test your security defenses
Secure SDLC
Develop securely and deploy confidently
Offensive Security Program
Minimize risk efficiently and effectively
For IT & Information Security Teams
Explore the benefits of an offensive security platform
For DevOps Teams
Explore the benefits of continuous security testing
Compliance
Comprehensive pentesting for compliance
About
About Us
Who we are
Leadership
The minds driving our mission forward
Cobalt Core
Community of skilled, vetted security experts
Partners
Explore Cobalt's partner network
Customers
Real customer stories straight from the source
Press
Read the latest news at Cobalt
Careers
Redefine and reimagine modern offensive security
Contact Us
Connect with a team member
GigaOm Radar Report
Featured
Download
Resources
Resource Library
Rethinking offensive security
Blog
Insights from security leaders, pentesters, and developers
Events & Webinars
Explore thought-provoking security topics
InfoSec Podcast
Explore the stories of cybersecurity experts
The OffSec Shift Report 2024
Featured
Download
login
get started
Explore benefits
Platform
Cobalt Platform
Modern offensive security platform
Dynamic Application Security Testing
Automated application security scanning
Pricing
Explore the flexible Cobalt credit model
Services
Application Security
Secure your apps without slowing down development
Application Pentest
Secure Code Review
Threat Modeling
Network Security
Protect systems and data with offensive security
Network Pentest
Red Teaming
Cloud Security
Secure your cloud infrastructure
Brand Protection
Safeguard your reputation
Digital Risk Assessment
Social Engineering
Device Security
Secure your devices from threats
Device Hardening
IoT Testing
Solutions
PtaaS
On-demand Pentesting as a Service
Pentest Program Management
Optimize pentesting with proven management
Goal-Based Pentest
Simulated attack to test your security defenses
Secure SDLC
Develop securely and deploy confidently
Offensive Security Program
Minimize risk efficiently and effectively
For IT & Information Security Teams
Explore the benefits of an offensive security platform
For DevOps Teams
Explore the benefits of continuous security testing
Compliance
Comprehensive pentesting for compliance
About
About Us
Who we are
Leadership
The minds driving our mission forward
Cobalt Core
Community of skilled, vetted security experts
Partners
Explore Cobalt's partner network
Customers
Real customer stories straight from the source
Press
Read the latest news at Cobalt
Careers
Redefine and reimagine modern offensive security
Contact Us
Connect with a team member
GigaOm Radar Report
Featured
Download
Resources
Resource Library
Rethinking offensive security
Blog
Insights from security leaders, pentesters, and developers
Events & Webinars
Explore thought-provoking security topics
InfoSec Podcast
Explore the stories of cybersecurity experts
The OffSec Shift Report 2024
Featured
Download
login
get started
NEW FEATURE
Cobalt PtaaS + DAST combines manual pentests and automated scanning for comprehensive applications security.
Get a demo
Cobalt Core (2)
Filter by Topic
Agile Pentesting
Cobalt Core
Community
Compliance
Cybersecurity Insights
Cybersecurity Services
DevSecOps
Industry Breakdowns
Life at Cobalt
LLM Security
Modernizing Pentesting
NEWS
Partners
Pentester Guides
Pentester Stories
Product Updates
Anatomy of the Session Management Tests
Note: This article has been created in light of the OWASP standards and descriptions.
Cobalt Core
Pentester Guides
Mar 19, 2021
Est Read Time: 6 min
Read more
A Pentester’s Guide to File Inclusion
Read the Pentester’s Guide to File Inclusion for key insights into this common vulnerability.
Cobalt Core
Pentester Guides
Feb 19, 2021
Est Read Time: 4 min
Read more
A Pentester’s Guide to Code Injection
Learn about code injection vulnerabilities with the Pentester’s Guide to Code Injection.
Cobalt Core
Pentester Guides
Jan 8, 2021
Est Read Time: 3 min
Read more
A Pentester's Guide to Server Side Template Injection (SSTI)
Server-side template injection is a vulnerability where the attacker injects malicious input into a template to execute commands on the server-side.
Cobalt Core
Pentester Guides
Dec 24, 2020
Est Read Time: 3 min
Read more
A Pentester’s Guide to Server Side Request Forgery (SSRF)
What is SSRF? In a Server-Side Request Forgery (SSRF) attack, the attacker can abuse functionality on the server to...
Cobalt Core
Pentester Guides
Oct 1, 2020
Est Read Time: 4 min
Read more
A Pentester’s Guide to SQL Injection (SQLi)
This blog will be one of many created alongside our Hacking How-To series, an educational video series around everyday...
Cobalt Core
Pentester Guides
Sep 17, 2020
Est Read Time: 5 min
Read more
How customer collaboration during a pentest can lead to finding a Remote Code Execution (RCE)
I was asked to share a blog post about a Remote Code Execution vulnerability that I identified in a past pentest....
Cobalt Core
Pentester Guides
Apr 9, 2019
Est Read Time: 2 min
Read more
What does it take to be a top Cobalt Core researcher?
Cobalt Core
Community
Jan 14, 2019
Est Read Time: 3 min
Read more
Mobile Vulnerabilities Worth Millions: Pen Tester’s Guide for Mobile Security Testing
Cobalt Core
Pentester Guides
Jul 26, 2018
Est Read Time: 2 min
Read more
1
2
3
.svg){kind=icon}
.svg){kind=icon}
