Burp Suite is one of the most popular web application security testing testing tools. It has a ton of features and can do everything from intercepting and modifying HTTP requests/responses in real time, to scanning web applications for vulnerabilities, to brute forcing login forms, to testing the entropy of session tokens, and it even allows […]
Today is Veteran’s day and I just wanted to thank all of the wonderful people that have or do serve in the Armed Forces. Regardless of how you may feel about US foreign policy, defense spending, fighting in the Middle East or any area of the world for that matter today is about not about […]
I have a student that has been asking me about internal network penetration testing so I figured I’d write a blog post about it. I was trying to explain to him that there is so much more to it then just popping boxes. Breaking in a machine is easy, the moving around a network and […]
Are you ready for the ultimate hands-on security course? 3 days of the real deal. No death by PowerPoint, no endless pontificating about how an attack theoretically works.
This 3-day workshop (3 Saturdays – Oct 10th, 17th, 24th) from 9am – 4pm EST will cover advanced hacking with Metasploit on the first day, advanced web hacking […]
I’ve been working on a project for a while now and I can finally tell you about it.
Small and medium sized businesses often do not have the knowledge to properly secure the applications they deploy in their environments, and usually cannot afford the enterprise security software products that could help them. This is the […]
This an intensive hands-on application security course designed to bring you up to speed on all things app security related and more importantly teach you how to find vulnerabilities in your web and thick client applications before the bad guys do.
You will learn how to identify security bugs in real applications with hands-on lab exercises. […]