Finding Your Weakness: Triaging Your Domains with SWAT
I have been involved in IT and security in one way or another for almost 30 years. I have worked ...
Continue Reading
Tips for Penetration Testing a PCI environment
Hello everyone! I put together a list of things to help me keep my PCI testing on track, not to ...
Continue Reading
Three C-Words of Web App Security: Part 1 - CORS
For those less versed in web applications and how they’ve evolved, I wrote a sort of prologue to ...
Continue Reading
Going the distance with Burp
Welcome to the 5th blog on Burp Suite, and Happy 4th of July! Please visit Secure Ideas’ previous ...
Continue Reading
Ethics of Ethical Hacking
Ethical hacking uses the principles and techniques of hackers to help businesses protect their ...
Continue Reading
Escaping the Whale: Things you probably shouldn't do with Docker (Part 1)
In this blog post, I won’t spend too much time explaining what Docker is and is not. You can do ...
Continue Reading
Information Security: A Strategy for Small Business
The Internet’s importance to businesses of all sizes and across all industries is indisputable. ...
Continue Reading
Social Engineering - Why hack it, when people are just giving away their information!
In today’s technologically driven society, more and more criminals have turned to cyber crime as a ...
Continue Reading
A Brief Evolution of Web Apps
Author’s Note: This was actually meant to be the first part of a series called Three C-Words of Web ...
Continue Reading
The Report
Being a pen tester is a cool job, we get to break into companies (with permission), steal stuff, ...
Continue Reading
Ever Run a Relay? Why SMB Relays Should Be On Your Mind
Time is never on your side when you’re onsite with a client and trying to get the first good ...
Continue Reading