GIVEAWAY
Win the ultimate AI security check with a free pentest giveaway!
Enter today
Platform
Cobalt Platform
Modern offensive security platform
Dynamic Application Security Testing
Automated application security scanning
Pricing
Explore the flexible Cobalt credit model
Services
Application Security
Secure your apps without slowing down development
Application Pentest
Secure Code Review
LLM Pentest
Network Security
Protect systems and data with offensive security
Network Pentest
Red Teaming
Cloud Security
Secure your cloud infrastructure
Brand Protection
Safeguard your reputation
Digital Risk Assessment
Social Engineering
Device Security
Secure your devices from threats
Device Hardening
IoT Testing
Solutions
PtaaS
On-demand Pentesting as a Service
Goal-Based Pentest
Simulated attack to test your security defenses
Compliance
Comprehensive pentesting for compliance
Secure SDLC
Develop securely and deploy confidently
Offensive Security Program
Minimize risk efficiently and effectively
For Small Businesses
Pentesting for growing business needs
For IT & Information Security Teams
Explore the benefits of an offensive security platform
For DevOps Teams
Explore the benefits of continuous security testing
About
Why Cobalt
Why сustomers сhoose Cobalt
About Us
Who we are
Leadership
The minds driving our mission forward
Cobalt Core
Community of skilled, vetted security experts
Partners
Explore Cobalt's partner network
Customers
Real customer stories straight from the source
Press
Read the latest news at Cobalt
Careers
Redefine and reimagine modern offensive security
Contact Us
Connect with a team member
GigaOm Radar Report
Featured
Download
Resources
Resource Library
Rethinking offensive security
Blog
Insights from security leaders, pentesters, and developers
Events & Webinars
Explore thought-provoking security topics
InfoSec Podcast
Explore the stories of cybersecurity experts
State of Pentesting Report 2024
Featured
Download
login
get started
Enter today
Platform
Cobalt Platform
Modern offensive security platform
Dynamic Application Security Testing
Automated application security scanning
Pricing
Explore the flexible Cobalt credit model
Services
Application Security
Secure your apps without slowing down development
Application Pentest
Secure Code Review
LLM Pentest
Network Security
Protect systems and data with offensive security
Network Pentest
Red Teaming
Cloud Security
Secure your cloud infrastructure
Brand Protection
Safeguard your reputation
Digital Risk Assessment
Social Engineering
Device Security
Secure your devices from threats
Device Hardening
IoT Testing
Solutions
PtaaS
On-demand Pentesting as a Service
Goal-Based Pentest
Simulated attack to test your security defenses
Compliance
Comprehensive pentesting for compliance
Secure SDLC
Develop securely and deploy confidently
Offensive Security Program
Minimize risk efficiently and effectively
For Small Businesses
Pentesting for growing business needs
For IT & Information Security Teams
Explore the benefits of an offensive security platform
For DevOps Teams
Explore the benefits of continuous security testing
About
Why Cobalt
Why сustomers сhoose Cobalt
About Us
Who we are
Leadership
The minds driving our mission forward
Cobalt Core
Community of skilled, vetted security experts
Partners
Explore Cobalt's partner network
Customers
Real customer stories straight from the source
Press
Read the latest news at Cobalt
Careers
Redefine and reimagine modern offensive security
Contact Us
Connect with a team member
GigaOm Radar Report
Featured
Download
Resources
Resource Library
Rethinking offensive security
Blog
Insights from security leaders, pentesters, and developers
Events & Webinars
Explore thought-provoking security topics
InfoSec Podcast
Explore the stories of cybersecurity experts
State of Pentesting Report 2024
Featured
Download
login
get started
GIVEAWAY
Win the ultimate AI security check with a free pentest giveaway!
Enter today
Blog
Thoughts, perspectives, and industry commentary from the Cobalt team.
Filter by Topic
Agile Pentesting
API Pentesting
Awards
Cloud Security
Cobalt Core
Compliance
Cybersecurity Insights
Cybersecurity Services
DevSecOps
Industry Breakdowns
Life at Cobalt
LLM Security
Mobile Application Pentesting
Modernizing Pentesting
NEWS
Partners
Pentester Guides
Pentester Stories
Product Updates
Web Application Pentesting
Bypassing CSRF tokens with Python’s CGIHTTPServer to exploit SQL injections
There are ways to configure Burp using macros to bypass CSRF tokens on HTML forms, so we can use Burp Active Scans,...
Modernizing Pentesting
Oct 11, 2017
Est Read Time: 4 min
Read more
How to Survive a Vendor Security Questionnaire
Tips on vendor assessments from experts in the industry
Cybersecurity Insights
Aug 14, 2017
Est Read Time: 7 min
Read more
New Alternatives to Bug Bounty Programs
Before you can choose the right approach to test your application security, you first need to understand your options —...
Modernizing Pentesting
Aug 2, 2017
Est Read Time: 4 min
Read more
UX-Friendly Enumeration Protection in Ruby on Rails
How to avoid revealing the existence of records to attackers in web applications, while keeping a good user experience...
Cobalt Core
Pentester Guides
May 23, 2017
Est Read Time: 4 min
Read more
Penetration Testing for SaaS Companies
SaaS companies have fundamentally transformed the enterprise software model and at this point it seems there is no...
Modernizing Pentesting
May 8, 2017
Est Read Time: 3 min
Read more
Start at Zero with the OWASP Top 10
Engineering is an exercise in working within constraints. Appsec increases those constraints, forcing developers to...
Cybersecurity Insights
Apr 24, 2017
Est Read Time: 3 min
Read more
Introducing In-App Pentest Reports
My name is Kevin Bourne and I recently joined Cobalt as their new Customer Success Manager. My primary responsibility...
Product Updates
Mar 28, 2017
Est Read Time: 1 min
Read more
Crowdsourced Penetration Testing and PCI DSS Compliance
Various regulatory requirements that are lurking across different industries — involving different aspects of...
Compliance
Mar 20, 2017
Est Read Time: 5 min
Read more
The Third Wave of Application Security
Cybersecurity Insights
Jan 26, 2017
Est Read Time: 8 min
Read more
56
57
58
59
60
Always get the latest
Sign up to get Cobalt insights delivered right to your inbox so you never miss a story.
More resources
Learn pentesting best practices, read answers to our most common questions
and get our technical docs.
resources
customer stories
docs
.svg){kind=icon}
.svg){kind=icon}
