WEBINAR
Join us to explore what 10 years of data tells us about real risks during the State of Pentesting 2025 webinar.
WEBINAR
Join us to explore what 10 years of data tells us about real risks during the State of Pentesting 2025 webinar.

Busra Demir

Busra is a former Lead Cobalt Core Pentester with a passion for offensive security research, capture the flag exercises, and certifications. She has currently completed her OSCE, OSCP, and OSWP certifications.

A Pentester’s Guide to HTTP Request Smuggling

What is HTTP Request Smuggling? HTTP request smuggling is an attack technique that is conducted by interfering with the...
Pentester Guides
Oct 15, 2020
Est Read Time: 9 min
Read more
A Pentester’s Guide to Server Side Request Forgery (SSRF) cover image

A Pentester’s Guide to Server Side Request Forgery (SSRF)

What is SSRF? In a Server-Side Request Forgery (SSRF) attack, the attacker can abuse functionality on the server to...
Cobalt Core Pentester Guides
Oct 1, 2020
Est Read Time: 4 min
Read more
A Pentester’s Guide to SQL Injection (SQLi) cover image

A Pentester’s Guide to SQL Injection (SQLi)

This blog will be one of many created alongside our Hacking How-To series, an educational video series around everyday...
Cobalt Core Pentester Guides
Sep 17, 2020
Est Read Time: 5 min
Read more

Anatomy of Authentication Tests

Introduction Authentication, as OWASP states, is the process of verifying that an individual, entity, or website is who...
Pentester Guides
Mar 5, 2020
Est Read Time: 4 min
Read more
The Anatomy of Deserialization Attacks

The Anatomy of Deserialization Attacks

What is Deserialization? Serialization is the process of turning some object into a data format that can be restored...
Pentester Guides
Jan 23, 2020
Est Read Time: 7 min
Read more
    1 2