Tag: pentest

Search

Productive Hacking: 5 Indicators of a Quality Penetration Test

Key elements of penetration tests that actually work for you. Everyone seems to have a different idea of what a penetration test is. Does it involve phishing employees? What about running port scans? Is it just checking for vulnerabilities and reporting them to management? Is the creepy, hooded person just

Read More

A Red Teamer’s Trip to the Doctor

The things that go through a security professional’s head during a regular doctor’s visit, why they matter to the healthcare industry, and why they should matter to you. Healthcare organizations are the stewards of troves of very private and personal information. This makes them high-value targets of all sorts of

Read More

The Road to Better Password Cracking (Part 1)

Or: how I learned to stop worrying and love AWS GPU clusters. Passwords are terrible. And I don’t mean just your Netflix password or your home Wi-Fi password. I’m talking about passwords as an idea. Passwords are existentially terrible. The reason passwords are terrible is simple: they’re meant to be

Read More

Are Pen Test and Vulnerability Scans Required for a SOC 2 Report?

Are Pen Test and Vulnerability Scans Required for a SOC 2 Report? There has been much confusion lately in the SOC 2 market as companies seek to understand the need-to-haves vs. the nice-to-haves when it comes to obtaining a SOC 2 report.  Much of this confusion was brought about by the December 2018 upgrade of the Trust Services Criteria, and associated Point of Focus, intended to align SOC 2 with the 2013 COSO framework.

Read More
security Image

Analyzing Your Attack Surface Like A Hacker

When most people think of hacking, they think of what Hollywood portrays. In a dark basement, a hooded, perhaps tattooed outcast rapidly types nonsensical keystrokes at a flashy computer monitor for several seconds before snidely muttering, “I’m in.” By that representation, the hacking process seems pretty straightforward: find a vulnerability,

Read More