Platform
- - Cobalt Platform
    
    Modern offensive security platform
  - Dynamic Application Security Testing
    
    Automated application security scanning
  - Pricing
    
    Explore the flexible Cobalt credit model
Services
- - Application Security
    
    Secure your apps without slowing down development
  - Application Pentest
  - Secure Code Review
  - LLM Pentest
  - Network Security
    
    Protect systems and data with offensive security
  - Network Pentest
  - Red Teaming
- - Cloud Security
    
    Secure your cloud infrastructure
  - Brand Protection
    
    Safeguard your reputation
  - Digital Risk Assessment
  - Social Engineering
  - Device Security
    
    Secure your devices from threats
  - Device Hardening
  - IoT Testing
Solutions
- - PtaaS
    
    On-demand Pentesting as a Service
  - Goal-Based Pentest
    
    Simulated attack to test your security defenses
- - Compliance
    
    Comprehensive pentesting for compliance
  - Secure SDLC
    
    Develop securely and deploy confidently
  - Offensive Security Program
    
    Minimize risk efficiently and effectively
- - For Small Businesses
    
    Pentesting for growing business needs
  - For IT & Information Security Teams
    
    Explore the benefits of an offensive security platform
  - For DevOps Teams
    
    Explore the benefits of continuous security testing
About
- - Why Cobalt
    
    Why сustomers сhoose Cobalt
  - About Us
    
    Who we are
  - Leadership
    
    The minds driving our mission forward
  - Cobalt Core
    
    Community of skilled, vetted security experts
  - Partners
    
    Explore Cobalt's partner network
- - Customers
    
    Real customer stories straight from the source
  - Press
    
    Read the latest news at Cobalt
  - Careers
    
    Redefine and reimagine modern offensive security
  - Contact Us
    
    Connect with a team member
- - GigaOm Radar Report
    
    Featured
    
    Download
Resources
- - Resource Library
    
    Rethinking offensive security
  - Blog
    
    Insights from security leaders, pentesters, and developers
- - Events & Webinars
    
    Explore thought-provoking security topics
  - InfoSec Podcast
    
    Explore the stories of cybersecurity experts
- - State of Pentesting Report 2024
    
    Featured
    
    Download
login
get started

Platform
- - Cobalt Platform
    
    Modern offensive security platform
  - Dynamic Application Security Testing
    
    Automated application security scanning
  - Pricing
    
    Explore the flexible Cobalt credit model
Services
- - Application Security
    
    Secure your apps without slowing down development
  - Application Pentest
  - Secure Code Review
  - LLM Pentest
  - Network Security
    
    Protect systems and data with offensive security
  - Network Pentest
  - Red Teaming
- - Cloud Security
    
    Secure your cloud infrastructure
  - Brand Protection
    
    Safeguard your reputation
  - Digital Risk Assessment
  - Social Engineering
  - Device Security
    
    Secure your devices from threats
  - Device Hardening
  - IoT Testing
Solutions
- - PtaaS
    
    On-demand Pentesting as a Service
  - Goal-Based Pentest
    
    Simulated attack to test your security defenses
- - Compliance
    
    Comprehensive pentesting for compliance
  - Secure SDLC
    
    Develop securely and deploy confidently
  - Offensive Security Program
    
    Minimize risk efficiently and effectively
- - For Small Businesses
    
    Pentesting for growing business needs
  - For IT & Information Security Teams
    
    Explore the benefits of an offensive security platform
  - For DevOps Teams
    
    Explore the benefits of continuous security testing
About
- - Why Cobalt
    
    Why сustomers сhoose Cobalt
  - About Us
    
    Who we are
  - Leadership
    
    The minds driving our mission forward
  - Cobalt Core
    
    Community of skilled, vetted security experts
  - Partners
    
    Explore Cobalt's partner network
- - Customers
    
    Real customer stories straight from the source
  - Press
    
    Read the latest news at Cobalt
  - Careers
    
    Redefine and reimagine modern offensive security
  - Contact Us
    
    Connect with a team member
- - GigaOm Radar Report
    
    Featured
    
    Download
Resources
- - Resource Library
    
    Rethinking offensive security
  - Blog
    
    Insights from security leaders, pentesters, and developers
- - Events & Webinars
    
    Explore thought-provoking security topics
  - InfoSec Podcast
    
    Explore the stories of cybersecurity experts
- - State of Pentesting Report 2024
    
    Featured
    
    Download
login
get started

Community (6)

JSON Web Tokens

JSON Web Token (JWT) is an open standard that defines a compact and self-contained way for securely transmitting information between parties as a JSON object. With the rise of JWT, Core Pentester Saad Nasir gives an introduction to the new security token.

Pentester Guides Community

Dec 5, 2022

Est Read Time: 9 min

Pentester Spotlight: Razvan Ionescu, Romania's 3rd GIAC Security Expert

Razvan Ionescu has been pentesting with the Cobalt Core since 2018. He recently became a GIAC Security Expert, Romania's third. Read more about Razvan in his Pentester Spotlight.

Pentester Stories Community

Nov 30, 2022

Est Read Time: 5 min

Introduction to Serverless Vulnerabilities

Core Pentester Harsh Bothra introduces us to serverless vulnerabilities. He reviews the top 10 vulnerabilities and concludes with how to remediate them.

Pentester Guides Community

Nov 23, 2022

Est Read Time: 6 min

Redteaming vs. Pentesting

Red Teaming vs. Pentesting

Core Pentester Saad Nasir writes about what the difference between red teaming and pentesting is based on his own experiences. Saad is a Pentester in Cobalt's Core and on the Red Team at SolarWinds.

Pentester Guides Community

Nov 21, 2022

Est Read Time: 2 min

Common Vulnerabilities in NodeJS Applications

Node.js is an open-source and cross-platform JavaScript runtime environment. Today we are going to look at 3 different vulnerabilities by analyzing the source code of an application and how you can detect and exploit them.

Pentester Guides Community

Nov 18, 2022

Est Read Time: 7 min

Source Code Review cover image

Source Code Review

Are you checking your new products for vulnerabilities in all capacities? Ninad Mathpati shares what you need to be doing during your Source Code Review and what attackers look for.

Pentester Guides Community

Nov 9, 2022

Est Read Time: 11 min

Pentesting Made Simple, an Italian Hacking Community

Core Pentester Reando Veshi has started his own hacking community in Italy: Pentesting Made Simple.

Pentester Stories Community

Nov 3, 2022

Est Read Time: 2 min

Pentester Feedback to Product Updates

Pentester Feedback to Product Updates

Cobalt Core Pentesters can provide Cobalt's Product Team with direct feedback that is often translated into the platform. Director of Product, Mark Hamill, walks us through what that process looks like.

Community

Nov 2, 2022

Est Read Time: 3 min

Pentester Spotlight: Alexis Fernández, Retired Developer takes on Pentesting

Alexis Fernandez has been a member of the Cobalt Core for a little over a year now. He started in security as a Web Developer before switching to ethical hacking.

Pentester Stories Community

Oct 26, 2022

Est Read Time: 3 min

4 5 6 7 8