Unless you are working directly with AWS then you will not be able to run a pentest against the AWS cloud environment directly. You are...

SQL (Structured Query Language) injection is an attack that exploits an insecure coding weakness within an application that interacts...

Broken authentication refers to a weakness in the design or implementation of access controls inherent in an online platform or application.

Linux is commonly the preferred operating system used by Ethical Hackers and 'Infosec' professionals due to the following factors...

Open-source software projects are, in theory, more secure than closed-source/proprietary software due to the clear disclosure of security...

The CIA triad is a security model of three core principles used within IT security and Information Security policies within an organisation.

Unlike the red team engagements, the purple-team testing is a collaborative exercise between both the red team and the blue team. Learn more

A red-team assessment is a simulated attack against an organisation using real-world information and threat intelligence analysis...

A physical penetration test is where an ethical hacker or social engineer will try to gain entry to one of your locations. Learn more.

Python is well-known as a fast, simple and easy, readable scripting or programming language. Learn more.

Full Disk Encryption is no longer enough. Learn more.

In this blog post, we will answer some of the most common questions that you may have surrounding Penetration Testing.

A Man in the Middle attack (MitM) is a form of cyberattack where the attacker sits in between two parties who believe that they are...

Penetration testing an Android application involves both the application operation, similar to how a web application test is performed...

The term 'brute force attack' in its most basic form is an attack that uses trial and error to guess possible combinations. This can...

Payment Card Industry (PCI) Penetration Testing or more commonly shortened to PCI Pen Testing is running penetration tests for the...

An OSCP Penetration Test or OSCP Pentest typically means that a Penetration Test is carried out by someone who has achieved the Offensive...

Nmap is a port scanning tool used by penetration testers and hackers to identify exposed services. While there are various options and...

What is an internal pen test? Internal Penetration Testing or 'Pentesting' typically refers to the testing of a client's internal...

What is a false positive alert? A false positive within cyber security refers to an alert or vulnerability that has been incorrectly...