WEBINAR
Join us to explore what 10 years of data tells us about real risks during the State of Pentesting 2025 webinar.
WEBINAR
Join us to explore what 10 years of data tells us about real risks during the State of Pentesting 2025 webinar.

Blog

Thoughts, perspectives, and industry commentary from the Cobalt team.

Pentester Spotlight: Alexis Fernández, Retired Developer takes on Pentesting

Alexis Fernandez has been a member of the Cobalt Core for a little over a year now. He started in security as a Web Developer before switching to ethical hacking.
Pentester Stories Cobalt Core
Oct 26, 2022
Est Read Time: 3 min
Read more
What it Means to be in the Cobalt Core

What it means to be in the Cobalt Core

What does it mean to be in the Cobalt Core? I asked some of our Core Pentesters about their experiences in the Core and what has been most memorable for them.
Pentester Stories Cobalt Core
Oct 18, 2022
Est Read Time: 4 min
Read more

Platform Deep Dive: New Risk Advisories Enrich Findings With CVE and NVD Data

Uncover the potential risks in your tech stack all in one platform and make an informed security plan.
Product Updates
Oct 17, 2022
Est Read Time: 2 min
Read more
G2 penetration testing ranks Cobalt #1

G2 Ranks Cobalt #1 in Penetration Testing

It’s official: users love us! G2 named Cobalt the #1 leader for the fourth consecutive quarter in its Fall 2022 Grid®...
NEWS
Oct 14, 2022
Est Read Time: 2 min
Read more

The Guide to Understanding Content Security Policy (CSP) and Bypass Exploits

This blog post aims to demonstrate what CSP is and why CSP is implemented. And how attackers can bypass CSP. In this article, I will include how you can bypass some directives to achieve XSS on the target application.
Cobalt Core Pentester Guides
Oct 12, 2022
Est Read Time: 9 min
Read more

Pentester of the Quarter: Farid Luhar

The Cobalt Community team is excited to announce that our Q4 Pentester of the Quarter is Farid Luhar! Farid has been...
Pentester Stories Cobalt Core
Oct 5, 2022
Est Read Time: 1 min
Read more

Pentester Spotlight: Nilesh Sapariya

Pentester Origin Story: How did you first get involved in pentesting? Back in time, when I was in 2nd year of...
Pentester Stories Cobalt Core
Oct 3, 2022
Est Read Time: 7 min
Read more

Web Socket Vulnerabilites

WebSockets are an exciting technology that has been gaining traction in the industry. Many companies are using the technology, especially in their real-time services
Cobalt Core Pentester Guides Web Application Pentesting
Sep 27, 2022
Est Read Time: 9 min
Read more
Sever-side request forgery cover image

Secure Software Best Practices: Protect Against Server-Side Request Forgery

See examples of Server-Side Request Forgery (SSRF) exploitation, and learn how to minimize your risks.
Pentester Guides
Sep 26, 2022
Est Read Time: 7 min
Read more
    31 32 33 34 35

    Always get the latest

    Sign up to get Cobalt insights delivered right to your inbox so you never miss a story.

    More resources

    Learn pentesting best practices, read answers to our most common questions
    and get our technical docs.