In today’s world, massive data breaches and sophisticated malware litter news headlines. Unfortunately, it often feels as though it’s more when your organization will fall victim, rather than if. Still, many organizations choose to only meet baseline...
I have experienced a common theme in internal network penetration testing: organizations rarely secure their printers. You may be asking yourself, “so what”? I’ve always been keen on this finding as it’s how I obtained domain administrator access on my first internal...
Poking Around Have you ever been poking around a website, clicking links, or visiting different directories? If you have, you might have come across something interesting or even a webpage that didn’t have a link pointing to it. If you did find sensitive...
Clients often ask if they should keep the same penetration testing vendor each year or rotate. While we hate to have our clients depart and pride ourselves in cultivating a partnership with them, we always adhere to giving unbiased advice. Unfortunately, it’s...
We frequently hear from our clients about the disparity between pricing quotes from multiple vendors. Unfortunately, this often leaves clients lost as they aren’t sure what is a fair price for a quality engagement. It can be frustrating, but unfortunately, the...
