WEBINAR
GigaOm Radar Report for PTaaS: How to Make a Smarter Investment in Pentesting
WEBINAR
GigaOm Radar Report for PTaaS: How to Make a Smarter Investment in Pentesting

Blog

Thoughts, perspectives, and industry commentary from the Cobalt team.

Man-In-The-Middle Attacks: How to Detect and Prevent

This article covers the steps cybercriminals commonly take to execute different MITM attacks, and how security teams can detect and prevent them.
Cybersecurity Insights
Jan 24, 2023
Est Read Time: 5 min
Read more

OAuth Vulnerabilites Pt. 1

Welcome to part one of OAuth Vulnerabilities. Core Pentester Shubham Chaskar overviews Oauth, commonly used grant types, entities, misconfiguration, and more.
Pentester Guides
Jan 23, 2023
Est Read Time: 10 min
Read more

Then & Now: Harsh Bothra

Core Pentester Harsh Bothra joined Cobalt a little over two years ago. Since then, he has become a Pentest Lead and worked on endless engagements. He takes this time to reflect on how things have changed since his first test.
Pentester Stories Cobalt Core
Jan 19, 2023
Est Read Time: 3 min
Read more

A Dive into Client-Side Desync Attacks

A client-side desync, a.k.a CSD, is an attack in which the victim's web browser is tricked into desynchronizing its connection to the vulnerable website. Core Pentester Harsh Bothra takes a look at how attackers can find these vulnerabilities in the wild.
Cobalt Core Pentester Guides
Jan 16, 2023
Est Read Time: 7 min
Read more

2023 Cobalt Partnerships: Expanding to MSP & MSSP Partners

When companies work together to provide better solutions for their clients, everyone wins.
Modernizing Pentesting Partners
Jan 12, 2023
Est Read Time: 2 min
Read more

Deep Dive into GraphQL Pt. 2

Welcome to part two of GraphQL! Core Pentester Michael Adcock tackles our newest deep dive into the open-source data query.
Pentester Guides API Pentesting
Jan 9, 2023
Est Read Time: 8 min
Read more

2023 Q1 Pentester of the Quarter: Sanyam Chawla

Congratulations to Sanyam Chawla for winning the Pentester of the Quarter Award for Q1. Sanyam was nominated by his peers due to being a great teammate and leader in the Core.
Pentester Stories Cobalt Core
Jan 6, 2023
Est Read Time: 3 min
Read more
A Pentester's Guide to Prototype Solution Attacks

A Pentester’s Guide to Prototype Pollution Attacks

Core Pentester Harsh Bothra guides us through prototype pollution attacks in his latest blog. This covers a security vulnerability that allows attackers to exploit JavaScript runtimes.
Cobalt Core Pentester Guides
Jan 2, 2023
Est Read Time: 8 min
Read more

2022 Pentester Spotlight Recaps

With 2023 just around the corner, we wanted to reflect on our Pentester Spotlights from this year. Our Pentester Spotlight series is focused on highlighting the Cobalt Core Pentesters and putting a face to their work
Pentester Stories
Dec 30, 2022
Est Read Time: 3 min
Read more
    23 24 25 26 27

    Always get the latest

    Sign up to get Cobalt insights delivered right to your inbox so you never miss a story.

    More resources

    Learn pentesting best practices, read answers to our most common questions
    and get our technical docs.