WEBINAR
Compliant vs. Secure: A CISO and CEO Discuss How to Manage Real-World Risk
WATCH NOW
WEBINAR
Compliant vs. Secure: A CISO and CEO Discuss How to Manage Real-World Risk
WATCH NOW

Resource library

Rethinking Application Security: Data sheets, whitepapers and industry reports from the Cobalt team.
REPORT
State of Software Supply Chain Security
Our panel discusses insights from the Cobalt 2025 State of Pentesting Report and the risks they didn't see coming.
read more
REPORT
State of Software Supply Chain Security
Our panel discusses insights from the Cobalt 2025 State of Pentesting Report and the risks they didn't see coming.
read more
Report
State of Pentesting, Financial Services Report, 2025
Discover critical insights on LLM application security and pentesting challenges. Learn why security investments lag behind genAI adoption and how to strengthen your organization's defenses.
read more
Webinar
The Bottom Line: Quantifying the Financial Impact of Offensive Security
Join our webinar to explore cybersecurity strategies for M&A, featuring experts from Cobalt and SideChannel on best practices and risk management across the deal continuum.
watch now
Guide
Best Practices for Penetration Testing: Introduction to Pentesting Principles, Practices, and Programs
Download essential resources on penetration testing, including best practices and strategic guides for compliance-driven pentesting to enhance your offensive security strategies.
read more
Guide
The Offensive Security Blueprint: A Guide to Building a Modern, Strategic Program
Our new whitepaper, The Offensive Security Blueprint, outlines how to build a modern security program that reduces breach risk, optimizes your security spend, and gives you the confidence to innovate with speed.
read more
Report
State of Pentesting in Healthcare 2025
The State of Pentesting in Healthcare 2025 report analyzes thousands of pentests and surveys of security leaders to provide a definitive look into the industry's security posture. It uncovers why remediation is a key weakness and outlines a path forward for security leaders.
read more
Adopting an Offensive Security Posture
Webinar
Adopting an Offensive Security Posture - SANS
Join our webinar to explore cybersecurity strategies for M&A, featuring experts from Cobalt and SideChannel on best practices and risk management across the deal continuum.
watch now
Webinar
Security Team Led Thousands of Pentests
Join our webinar to explore cybersecurity strategies for M&A, featuring experts from Cobalt and SideChannel on best practices and risk management across the deal continuum.
watch now
CISO Perspectives Report, thumbnail
Report
CISO Perspectives Report: AI and Digital Supply Chain Risks
Discover how a comprehensive offensive security program can empower your organization to identify and mitigate vulnerabilities before threat actors strike, ensuring you're prepared for the inevitable.
read more
Adopting an Offensive Security Posture, white paper
White Paper
Adopting an Offensive Security Posture
Discover how a comprehensive offensive security program can empower your organization to identify and mitigate vulnerabilities before threat actors strike, ensuring you're prepared for the inevitable.
read more
GUIDE
How to Fix the Top 5 Web App Vulnerabilities
Learn to detect and fix the top 5 web app vulnerabilities with practical strategies for developers and security teams, based on analysis of over 34,000 security flaws.
read more
Strengthening Cybersecurity in M&A, webinar thumbnail
Webinar
Strengthening Cybersecurity in M&A: Taking a Strategic Approach
Join our webinar to explore cybersecurity strategies for M&A, featuring experts from Cobalt and SideChannel on best practices and risk management across the deal continuum.
watch now
Webinar
Modern Offensive Security: Inside Personio's Strategic Approach to Pentesting
Discover Personio's strategic pentesting approach to enhance security. Join experts to learn how to build and maintain an effective offensive security program. Register now.
watch now
Webinar
Live Demo: Pentesting for AI Applications
Join our live demo to discover how Cobalt's pentesting enhances AI application security, identifies critical vulnerabilities, and accelerates remediation for innovative and safe development.
watch now
White Paper
State of LLM Security Report, 2025
Discover critical insights on LLM application security and pentesting challenges. Learn why security investments lag behind genAI adoption and how to strengthen your organization's defenses.
read more
Webinar
Live Demo: Pentesting GenAI Apps
Get started with a demo of Cobalt's Pentest as a Service (PtaaS) Platform. Join use for a live demo to see the benefits of PtaaS for your security!
watch now
Webinar
State of Pentesting 2025: What 10 Years of Data Tells Us About Real Risk
Join Jason Lamar, Cobalt’s SVP of Product, for a discussion on building a structured pentesting program that integrates with your AppSec strategy.
watch now
Webinar
How AI is Changing the Calculus on Offensive Security and Pentesting
Explore how AI is transforming offensive security and pentesting, enhancing strategies and efficiency in cybersecurity practices. Discover the future of digital defense today.
watch now
Cover image: The Risk You Didn't See Coming: Insights from the 2025 State of Pentesting Report
Webinar
The Risk You Didn't See Coming: Insights from the 2025 State of Pentesting Report
Our panel discusses insights from the Cobalt 2025 State of Pentesting Report and the risks they didn't see coming.
watch now
White Paper
State of Pentesting 2025
Learn what 10 years of pentesting data and a survey of 450 security leaders tells us about the AI security gap, why pentesting is more essential than ever, and much more. 
read more
Pentest checklist cover image
Checklist
Pentesting Buyer's Checklist
read more
Pentest Buyer's Guide Listing Image
White Paper
Pentesting in 2025 and Beyond: A Strategic Guide to Choosing the Right Partner
Choosing the right pentesting provider is key to the success of your security initiatives.
read more
Webinar
Rethinking AppSec: Using Pentesting to Prioritize What Matters
watch now
White Paper
The Responsible AI Imperative Report
Discover the security challenges of AI adoption and learn how to protect your applications with strategic pentesting of AI systems throughout the software development lifecycle.
read more
Cover Image: Pentesting Large Language Model Apps using the OWASP Top 10 for LLM
Webinar
Pentesting Large Language Model Apps using the OWASP Top 10 for LLM
watch now
Cover Image: Pentesting as a Service (PTaaS) Vendor Evaluation Checklist
Checklist
Pentesting as a Service (PTaaS) Vendor Evaluation Checklist
Jason Lamar, Cobalt’s Senior Vice President of Product recently joined David Bittner on the CyberWire Daily Podcast to share insights on pentesting, the growing need for offensive security and how companies can stay ahead of cyber threats.
read more
Webinar
The 90% Rule: Mastering Best Practices to Secure AI Ecosystems and Reduce Risk
watch now
Webinar
GigaOm Radar Report for PTaaS: How to Make a Smarter Investment in Pentesting
watch now
Buckets of trouble by CyberWire Podcast cover image
Podcast
Buckets of trouble by CyberWire Podcast
Jason Lamar, Cobalt’s Senior Vice President of Product recently joined David Bittner on the CyberWire Daily Podcast to share insights on pentesting, the growing need for offensive security and how companies can stay ahead of cyber threats.
listen now
DORA webinar cover image
Webinar
Mastering DORA Compliance: Ensuring Digital Resilience
watch now
GigaOm Radar Report Listing Image
White Paper
GigaOm Radar Report for PTaaS 2024
For the third consecutive year, Cobalt is honored to be recognized as an Outperformer in the GigaOm Radar Report for Penetration Testing as a Service. Backed by a dedicated community of expert pentesters and the latest technology, our platform delivers unmatched quality and speed. Discover why Cobalt continues to set the standard in PTaaS.
read more
Webinar
Compliance Crunch: How to Pentest Without the Panic
watch now
Cover Image GigaOm CxO Brief: Offensive Security Testing and Pentest as a Service (PtaaS)
Brief
GigaOm CxO Brief: Offensive Security Testing and Pentest as a Service (PtaaS)
null
read more
Webinar
Improving Security Maturity in the Age of AI
watch now
Webinar
SANS 2024 AI Survey Webcast
watch now
SANS AI Survey Report 2024
White Paper
SANS AI Survey 2024
null
read more
Webinar
State of Pentesting Report 2024 Webinar: Tips for Securing AI and an Expanding Attack Surface
watch now
SANS Application & API Security Survey 2024 cover image
White Paper
SANS Application & API Security Survey 2024
null
read more
AI-enabled LLM solution brief
Brief
LLM Pentesting Solutions Brief
read more
Brief
Dynamic Application Security Testing Solutions Brief
read more
State of Pentesting 2024 cover image
White Paper
State of Pentesting 2024
Our 6th edition of The State of Pentesting explores the most prevalent vulnerabilities, top vulnerabilities, AI trends, and security challenges in cybersecurity by tapping into data from 4,000 tests and over 900 responses from security practitioners in the United States, the United Kingdom, and Germany.
read more
Digital Risk Assessment Brief cover image
Brief
Digital Risk Assessment Brief
read more
Frost & Sullivan Brand Protection report cover image
Guide
Frost & Sullivan Brand Protection
null
read more
GigaOm Radar Report Names Cobalt Leader for Penetration Testing as a Service (PtaaS) cover image
White Paper
GigaOm Radar Report Names Cobalt Leader for Penetration Testing as a Service (PtaaS)
read more
OffSec Shift cover image
Guide
OffSec Shift
null
read more
Network Pentesting Solutions Brief cover image
Brief
Network Pentesting Solutions Brief
read more
Secure SDLC Guide cover image
Guide
Secure Your SDLC Guide
null
read more
Webinar
Cloud Native Now 2023
watch now
State of Pentesting Report 2023 Cover Image
White Paper
State of Pentesting 2023
Our 5th edition of The State of Pentesting explores the most prevalent vulnerabilities, how macroeconomic trends impact security teams, and where you might be leaving money on the table with your pentests by tapping into data from 3,100 tests and over 1,000 responses from security practitioners in the United States, the United Kingdom, and Germany.
read more
Webinar
Security is Job One
watch now
Guide
Security Risk Management: A Toolkit From Cobalt
read more
Risk Advisory Solutions Brief cover image
Brief
Risk Advisory Solutions Brief
read more
Wireless Penetration Testing Solutions Overview
Brief
Wireless Pentesting Brief
read more
White Paper
ESG Economic Validation Report
read more
Brief
Pentesting Use Cases Brief
read more
Humans of InfoSec cover image
Podcast
Humans of InfoSec Podcast
listen now
The Benefits of Cobalt's PtaaS Model Webinar cover image
Webinar
The Benefits of Cobalt's PtaaS Model Webinar
watch now
Guide
Pentesting in DevOps: A How-To Guide
read more
How Devs Can Fix And Prevent The 5 Most Common Web App Vulnerabilities
White Paper
How Devs Can Fix And Prevent The 5 Most Common Web App Vulnerabilities
read more
A Developer’s Guide to Pentest Terminology and Metrics
White Paper
A Developer’s Guide to Pentest Terminology and Metrics
read more
Podcast
Humans of InfoSec Episode 69: Inside the Mind of a Developer
listen now
The ROI of Partnering with Cobalt cover image
Webinar
The ROI of Partnering with Cobalt
watch now
Brief
Cobalt Integrations Brief
read more
Brief
Phishing Solutions Brief
read more
Brief
Red Team Solutions Brief
read more
Cobalt Secure Code Review Solution Brief
Brief
Secure Code Review Solutions Brief
read more
Brief
Cobalt Platform Brief
read more
Brief
Enterprise Solution Brief
read more
Brief
Cobalt Packages
read more
White Paper
The State of Pentesting 2022
For 2022, we present the most prevalent vulnerabilities, how teams manage risk, and how talent shortages impact both security and development teams. Benchmark your application security against stats from over 2,300 pentests.
read more
Infographic
PtaaS versus Traditional Consultancies
read more
The Challenges of Threat Modeling Modern Applications cover image
White Paper
The Challenges of Threat Modeling Modern Applications
null
read more
Security Leadership Gap cover image
Webinar
The Security Leadership Gap: What We Need for Today’s Organizations
watch now
Webinar
Benefits of Continuous Pentesting & Cyber Security Programs
watch now
White Paper
The Buyer's Guide to Modern Pentesting
Ready for your next pentest? The Buyer's Guide to Modern Pentesting has all the intel on the pentesting market & how vendors can strengthen your security.
read more
Referral
Refer A Friend to Cobalt
read more
Brief
Solution Brief: Cobalt’s Pentest Platform Turns Insights Into Action
read more
Webinar
ROI of Modern Pentesting: How ezCater Found Real-World Savings with PtaaS
watch now
Webinar
Pair Cyber Asset Visibility with Pentesting to Fight the Clock Against Hackers
watch now
Webinar
Leverage Pentest & Compliance Automation to Scale Security Operations
watch now
Webinar
SaaStock Sessions: 6 Steps to Building a Pentest Program for SOC 2 Compliance
watch now
Infographic
Pentest as a Service Features for Engineering
read more
Webinar
Building an Information Security & Compliance Roadmap
watch now
Webinar
Winning the Security Budget Fight: How To Get Funding Everytime
watch now
Webinar
SecTalks Lightning Talk: Modeling Graphs for Security Analysis
watch now
Webinar
SecTalks Session- The State of Pentesting 2021
watch now
Webinar
SecTalks Session- How to Negotiate: Security Career Tips
watch now
Webinar
SecTalks Lightning Talk: Presented by Secureframe
watch now
Webinar
SecTalks Session- The Hidden Insights in Your Pentest Data
watch now
Webinar
SecTalks Session- Cybersecurity in the Boardroom
watch now
Webinar
SecTalks Lightning Talk: Using TPRM as a Pentesting Strategy
watch now
Webinar
SecTalks Keynote Session Oct 2021
watch now
Webinar
SecTalks Lightning Talk: The Past, Present & Future of Information Security Audit
watch now
Webinar
SecTalks Session- Speak My Language: How to Talk Security to Different Audiences
watch now
Webinar
The State of Pentesting 2021
watch now
Podcast
Pentester Diaries Ep7: Tips for Communicating with Customers
listen now
White Paper
451 Research Insight Report on Cobalt PtaaS Model
read more
Podcast
Pentester Diaries Ep6: The Importance of Report Writing
listen now
White Paper
Get to Know the Cobalt Core
read more
White Paper
The State of Pentesting 2021
null
read more
Podcast
Pentester Diaries Ep5: Understanding Severity Ratings
listen now
Podcast
Pentester Diaries Ep4: Beyond Security Hygiene
listen now
Podcast
Pentester Diaries Ep3: Time Management & Pentest Organization
listen now
Podcast
Pentester Diaries Ep2: 2FA Bypass Techniques
listen now
Ebook
Compliance Pentesting: Beginners Guide to Testing
null
read more
White Paper
SANS Analyst Whitepaper: Pentest as a Service with Cobalt 2021
read more
Podcast
Pentester Diaries Ep1: Understanding Business Logic
listen now
Webinar
SecTalks Session - Make Security Stronger: Creating More Efficient Workflows
watch now
Ebook
A Comprehensive Guide to Building a Pentest Program
read more
White Paper
The State of Pentesting: 2020
null
read more
State of Pentesting 2019 Cover Image
White Paper
The State of Pentesting: 2019
null
read more
Ebook
Analyst Research: ROI of Pentest as Service
read more
White Paper
OWASP Top 10 is a Good Start. Now What?
null
read more
Ebook
A Practitioner’s Guide to Application Security
read more
Guide to API Security Testing
White Paper
Guide to API Security Testing
null
read more
White Paper
Analyst Research: ROI of Pentesting as a Service (PtaaS)
read more
Ebook
Pentesting Metrics
null
read more
Ebook
AppSec ABCs Children's Book
read more

    More resources

    Learn more about penetration testing best practices, read answers to the most common questions we get and get technical docs about everything Cobalt.