Web applications can be one of the biggest threats to your internal network. I would argue that in the majority of our external penetration tests, where we escalate to the internal domain, a web application is to blame. It seems there are a few gaps that people are missing when conducting their own web application […]
5 Must-Have Network Penetration Testing Strategies
As a consultant, I get to see a wide variety of networks and styles for engaging penetration testers. While a good number of the clients I work with are engaging us for PCI-related penetration tests, we do deal with a fair number of non-PCI related engagements. The strategies for both types of assessments are similar, […]