Cross-Site Request Forgery, or CSRF is an attack that forcefully makes an authenticated user submit a malicious request against a Web application they are authenticated to. This attack intends to…
Tag:
penetration testing
-
-
Businesses should conduct regular network assessments to ensure that their IT processes are performing efficiently. From identifying obsolete hardware and software to improving security and devising disaster plans, a well-designed…
-
The Mobile Application Penetration Testing Methodology shifts its focus from conventional application security, according to which the threat primarily originates from internet. A Mobile Application Penetration Testing Methodology focuses on…
-
What is Web Application Security? Web application security in its basic form is the idea of ensuring websites function as expected from a security perspective. It includes a collection of…
-
Often when conducting penetration tests, there is a need to carry out full-fledged black box testing. This is where a security professional has to deal with firewalls or other restriction…
-
Red Team assessments are increasingly popular way for organisations to get a realistic approach towards their overall security. Attack surfaces of organisations are constantly growing. Hence, identifying vulnerabilities that an…
-
Penetration testing is one of the best methods to check defence parameters thoroughly. We can apply it across the entire IT infrastructure, including databases, web applications and network security. But…
-
Cyber Security
Penetration Testing as a Part of an Organisational Security Program
by Tashinaby TashinaOrganisations that need information systems infrastructure for managing data, business procedures, activities and client relationships must have robust IT security programs in place. Since they have data stored and processed…
-
A red team assessment helps find as many vulnerabilities as possible in a system. It generally involves lateral thinking, trying various attacks and considering how to bypass certain defences. Here…
-
Network enumeration is a process which creates an active connection with the target hosts for discovering potential attack vectors, or for further exploiting the system. It is used to gather…
Newer Posts