CREST and Hack The Box launch CREST certification-aligned penetration testing training labs
New Hack The Box training pathway provides study support for CREST penetration testing exams.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Penetration Testing
Vulnerability Assessment vs. Penetration Test: A Case of Mistaken Identities
If you’ve been in the realm of penetration (“pen”) testing in any capacity for any length of time, you’ve probably experienced the conversations around inconsistent pen testing results across teams or vendors. This isn’t anything new in the pen testing world. The conversations probably ranged from friendly internal team banter to more serious discussions with external vendors on pen testing program success metrics. Is this a case of mistaken identity?
A Pen Tester's Guide to Content Security Policy
In this article, we’ll look at Content Security Policy through the eyes of a penetration tester. We will outline the advantages of CSP, explain why you should have it on your site, and share some common misconfigurations that can be exploited, along with the relevant bypass scenarios. What is Content Security Policy?
Why Choose Penetration Testing as a Service?
For companies looking to stay ahead of the ever-evolving cybersecurity landscape, penetration testing is one of the most important services they can invest in. Penetration Testing as a Service (PTaaS) provides businesses with an effective way to identify security vulnerabilities before they become major issues and cause irreversible damage.
Pen Test vs Vuln Scans - What's the difference? Cybersecurity 101
What’s the difference between #penetrationtesting and #vulnerabilityscanning? It’s not the set-up for a joke, it’s a quick explainer vid. Find out the difference and why you need both. Part of our #cybersecurity101 series.
What's the Difference Between Red Teaming and Penetration Testing?
When discussing cybersecurity, “penetration testing” and “red teaming” are two terms that are often used interchangeably but are two entirely separate concepts. If you are considering implementing additional cybersecurity protocols within your organization, it’s essential to understand the unique role and function of each of these processes and how they can benefit your organization.
The Power of Manual Penetration Testing in Securing Your Attack Surface
When it comes to protecting software, don’t count on automated testing to find all the vulnerabilities in your code. Here’s why manual penetration testing is more essential (and more accessible) than one might think.
Identifying a Quality Pentest - Sedara Whiteboard Series
In this episode of the Sedara Cybersecurity Whiteboard Series, our Lead Pentester Nick Aures talks about what to look for in a quality pentest. Nick breaks the talk down into 4 key takeaways: Take a look, and we hope it’s helpful. What Should I Look for in a Quality Penetration Test? Penetration testing is a fundamental part of validating the security measures you’ve taken and showing they are effective.
What is penetration testing and why is it important to use a CREST-approved provider?
As digital business becomes more widespread, the need to ensure data security increases. One way to test its effectiveness is through penetration testing. Penetration tests are performed by ‘ethical hackers’ who attempt to gain access to systems and data to find vulnerabilities. By doing so, businesses can then take steps to mitigate these risks. Companies should consider penetration testing as an essential part of their overall security strategy.
Trustwave Launches Value-Driven Enterprise Pen Testing Offering
Trustwave has enhanced its pen testing offering to now include a high-quality, cost-effective offering to larger organizations. This new Enterprise Pen Testing (EPT) offering is designed to meet the complex testing needs of these organizations with an extensive breadth and depth of vulnerability identification, ability to deliver scaled programs of work, at an extremely competitive price point.