Professionally Evil Insights

Welcome to the Professionally Evil Insights blog by Secure Ideas! In this digital playground, we unravel the complex world of information security with a touch of fun. Our expert-led content ranges from deep-dives into penetration testing to explorations of hardware hacking. Whether you're curious about Secure Ideas or passionate about cybersecurity, this blog is your quick, enlightening, and entertaining guide into the captivating world of information security.

Welcome aboard!

    Featured Image
    The reason I stopped using Postman for API Pentests
    penetration testing |  pentesting |  API
    I’ve been a proponent of Postman for a number of years. I’ve written and spoken about using it in the API pentesting toolchain, proxied through your interception proxy (Burp/Zap/etc). This lets you use Postman as your clean version of the API calls, while tampering and fuzzing is delegated to the ...
    Continue Reading

    Never miss a Professionally Evil update!

    Sign Up For Our Newsletter
    ZAPmas Feedback
    ZAPmas Feedback
    Sometimes Christmas comes early, and in this case for me it was the publication of the Twelve Days ...
    Continue Reading
    Twelve Days of ZAPmas - Day 7 - API Testing with Postman and ZAP
    Twelve Days of ZAPmas - Day 7 - API Testing with Postman and ZAP
    application security  |  OWASP  |  API
    If you’ve done any significant amount of API development, there’s a good chance you’ve used ...
    Continue Reading
    Automating Red Team Homelabs: Part 2 – Build, Pentest, Destroy, and Repeat
    Automating Red Team Homelabs: Part 2 – Build, Pentest, Destroy, and Repeat
    pentesting  |  automation  |  API  |  dev ops  |  home lab
    As of 2019-05-14 the Funny Stories section has been updated. Now that we understand what the goal ...
    Continue Reading
    Has contents: true Total pages: 1 Current page: 1