Often, we face a situation where we receive (are given) a domain to pentest, and after every attempt in the playbook, we still don’t find any way to get in. When you run out of options for breaking into one door, you might want to try a different door… or a window. In our case, […]
In the need to increase their cyber security resilience, companies start searching for cyber security trainings. This thing, in fact, is a very normal and recommended action. But there are many times when they find themselves in one of these three situations: There are too many options Trainings are too expensive and the overall quality […]
with Reverse IP lookups Often, we face a situation where we receive a domain to pentest, and after each attempt in the playbook, we still don’t find any way to get in. So, how to expand your attack surface? When you run out of options for breaking into one door, you might want to try […]
In the previous post, we learned what is and how APT (Advanced Persistent Threat) attacks work. But the interesting part comes when we think about: How can we detect such complex attacks? And is there any way to detect APT infections? The answer is yes. Yet, detecting APT attack is a real challenge and requires […]
Advanced Persistent Threat attack – learn what is and how it works The number of cyber attacks is increasing on the internet nowadays. It is not surprising that the World Economic Forum and Global Risk Report placed in 2018 cyber attacks as the third most likely risk, behind extreme weather conditions and natural disasters. One […]
Adding CA to an Android system and bypass SSL pinning protections are two very important steps in testing the security of different applications. After my latest article – How To Install And Root Your Android Emulator – I received a couple of questions about what to do next. In the article that I mention above […]
Mobile applications became an essential part of our lives, somehow we are dependent of them. We are using a lot of mobile applications every day. If you are lost in a new city, Google Maps gets you out of this situation. or if we want to make an appointment to the hairstylist, mobile applications assist […]
CTFs from the Cyber Security domain, or Capture-The-Flag competitions, have nothing to do with games that imply physical activity (e.g Paintball, Airsoft), but are perfect for hands-on and real-life hacking techniques, just to level up your skills.