GET STARTED
Need to fast-track your pentesting? Our experts make it easy.
Get started now
Platform
Cobalt Platform
Modern offensive security platform
Dynamic Application Security Testing
Automated application security scanning
Pricing
Explore the flexible Cobalt credit model
Services
Application Security
Secure your apps without slowing down development
Application Pentest
Secure Code Review
Threat Modeling
Network Security
Protect systems and data with offensive security
Network Pentest
Red Teaming
Cloud Security
Secure your cloud infrastructure
Brand Protection
Safeguard your reputation
Digital Risk Assessment
Social Engineering
Device Security
Secure your devices from threats
Device Hardening
IoT Testing
Solutions
PtaaS
On-demand Pentesting as a Service
Pentest Program Management
Optimize pentesting with proven management
Goal-Based Pentest
Simulated attack to test your security defenses
Secure SDLC
Develop securely and deploy confidently
Offensive Security Program
Minimize risk efficiently and effectively
For IT & Information Security Teams
Explore the benefits of an offensive security platform
For DevOps Teams
Explore the benefits of continuous security testing
Compliance
Comprehensive pentesting for compliance
About
Why Cobalt
Why сustomers сhoose Cobalt
About Us
Who we are
Leadership
The minds driving our mission forward
Cobalt Core
Community of skilled, vetted security experts
Partners
Explore Cobalt's partner network
Customers
Real customer stories straight from the source
Press
Read the latest news at Cobalt
Careers
Redefine and reimagine modern offensive security
Contact Us
Connect with a team member
GigaOm Radar Report
Featured
Download
Resources
Resource Library
Rethinking offensive security
Blog
Insights from security leaders, pentesters, and developers
Events & Webinars
Explore thought-provoking security topics
InfoSec Podcast
Explore the stories of cybersecurity experts
State of Pentesting Report 2024
Featured
Download
login
get started
Explore benefits
Platform
Cobalt Platform
Modern offensive security platform
Dynamic Application Security Testing
Automated application security scanning
Pricing
Explore the flexible Cobalt credit model
Services
Application Security
Secure your apps without slowing down development
Application Pentest
Secure Code Review
Threat Modeling
Network Security
Protect systems and data with offensive security
Network Pentest
Red Teaming
Cloud Security
Secure your cloud infrastructure
Brand Protection
Safeguard your reputation
Digital Risk Assessment
Social Engineering
Device Security
Secure your devices from threats
Device Hardening
IoT Testing
Solutions
PtaaS
On-demand Pentesting as a Service
Pentest Program Management
Optimize pentesting with proven management
Goal-Based Pentest
Simulated attack to test your security defenses
Secure SDLC
Develop securely and deploy confidently
Offensive Security Program
Minimize risk efficiently and effectively
For IT & Information Security Teams
Explore the benefits of an offensive security platform
For DevOps Teams
Explore the benefits of continuous security testing
Compliance
Comprehensive pentesting for compliance
About
Why Cobalt
Why сustomers сhoose Cobalt
About Us
Who we are
Leadership
The minds driving our mission forward
Cobalt Core
Community of skilled, vetted security experts
Partners
Explore Cobalt's partner network
Customers
Real customer stories straight from the source
Press
Read the latest news at Cobalt
Careers
Redefine and reimagine modern offensive security
Contact Us
Connect with a team member
GigaOm Radar Report
Featured
Download
Resources
Resource Library
Rethinking offensive security
Blog
Insights from security leaders, pentesters, and developers
Events & Webinars
Explore thought-provoking security topics
InfoSec Podcast
Explore the stories of cybersecurity experts
State of Pentesting Report 2024
Featured
Download
login
get started
GET STARTED
Need to fast-track your pentesting? Our experts make it easy.
Get started now
Pentester Guides (9)
Filter by Topic
Agile Pentesting
Cobalt Core
Community
Compliance
Cybersecurity Insights
Cybersecurity Services
DevSecOps
Industry Breakdowns
Life at Cobalt
LLM Security
Modernizing Pentesting
NEWS
Partners
Pentester Guides
Pentester Stories
Product Updates
A Pentester’s Guide to Server Side Request Forgery (SSRF)
What is SSRF? In a Server-Side Request Forgery (SSRF) attack, the attacker can abuse functionality on the server to...
Cobalt Core
Pentester Guides
Oct 1, 2020
Est Read Time: 4 min
Read more
A Pentester’s Guide to SQL Injection (SQLi)
This blog will be one of many created alongside our Hacking How-To series, an educational video series around everyday...
Cobalt Core
Pentester Guides
Sep 17, 2020
Est Read Time: 5 min
Read more
Pentest Workflow — Leveraging Community-Powered Tools
As a pentester, I like to look for ways to leverage automation so I can focus my efforts on bugs that are hard to...
Pentester Guides
Apr 14, 2020
Est Read Time: 3 min
Read more
Anatomy of Authentication Tests
Introduction Authentication, as OWASP states, is the process of verifying that an individual, entity, or website is who...
Pentester Guides
Mar 5, 2020
Est Read Time: 4 min
Read more
The Anatomy of Deserialization Attacks
What is Deserialization? Serialization is the process of turning some object into a data format that can be restored...
Pentester Guides
Jan 23, 2020
Est Read Time: 7 min
Read more
Understanding the Anatomy of an Attack
Notable, high-impact security breaches sadly make regular headlines. You might be tempted to dismiss the latest as just...
Pentester Guides
Nov 21, 2019
Est Read Time: 9 min
Read more
How to Scope a Network Penetration Test: Tips from an Expert Pentester
During a network pentest engagement, time is of the essence. A penetration tester has a fixed amount of time, typically...
Pentester Guides
Oct 3, 2019
Est Read Time: 4 min
Read more
Is Your Serverless App Secure?
In the past few months, I’ve hosted several sessions on serverless security for serverless developers and DevOps folks....
Pentester Guides
Aug 6, 2019
Est Read Time: 4 min
Read more
How customer collaboration during a pentest can lead to finding a Remote Code Execution (RCE)
I was asked to share a blog post about a Remote Code Execution vulnerability that I identified in a past pentest....
Cobalt Core
Pentester Guides
Apr 9, 2019
Est Read Time: 2 min
Read more
6
7
8
9
10
.svg){kind=icon}
.svg){kind=icon}
