Event
Join cybersecurity experts from Slack, Riot Games, EY and more at our upcoming roadshow. 

Pentester Guides (4)

A Pentester’s Guide to Code Injection

Learn about code injection vulnerabilities with the Pentester’s Guide to Code Injection.
Jan 8, 2021
Est Read Time: 3 min

A Pentester's Guide to Server Side Template Injection (SSTI)

Server-side template injection is a vulnerability where the attacker injects malicious input into a template to execute commands on the server-side.
Dec 24, 2020
Est Read Time: 3 min

A Pentester’s Guide to Command Injection

Get expert insights with a command injection tutorial with insights from pentesting experts at Cobalt, a Pentest as a Service (PtaaS) provider.
Dec 11, 2020
Est Read Time: 3 min

How to Execute an XML External Entity Injection (XXE)

What's XXE? An XML External Entity vulnerability is a type of attack against an application that parses XML input. This...
Nov 26, 2020
Est Read Time: 4 min

A Pentester’s Guide to Cross-Site Request Forgery (CSRF)

Cross-Site Request Forgery (CSRF) is an attack that forces an end user to execute unwanted actions on a web application...
Nov 13, 2020
Est Read Time: 4 min

A Pentester’s Guide to Cross-Site Scripting (XSS)

Examine a common security vulnerability, Cross-Site Scripting (XSS).
Oct 30, 2020
Est Read Time: 8 min

A Pentester’s Guide to HTTP Request Smuggling

What is HTTP Request Smuggling? HTTP request smuggling is an attack technique that is conducted by interfering with the...
Oct 15, 2020
Est Read Time: 9 min

A Pentester’s Guide to Server Side Request Forgery (SSRF)

What is SSRF? In a Server-Side Request Forgery (SSRF) attack, the attacker can abuse functionality on the server to...
Oct 1, 2020
Est Read Time: 3 min

A Pentester’s Guide to SQL Injection (SQLi)

This blog will be one of many created alongside our Hacking How-To series, an educational video series around everyday...
Sep 17, 2020
Est Read Time: 5 min
    2 3 4 5 6