Client Portal
Contact Us

Professionally Evil Blog

A blog by experts of penetration testing and other security assessments.
    Featured Image
    Understanding Server-Side Template Injection (SSTI)
    Testing |  Training |  QA |  web penetration testing |  penetration testing |  application security |  OWASP |  web application security |  methodology |  OWASP Top 10
    Web applications play a vital role in delivering dynamic content to users. To achieve this, developers often utilize server-side templates, which provide a powerful and consistent way to generate dynamic web pages. However, along with this power comes the risk of Server-Side Template Injection ...
    Continue Reading

    Never miss a Professionally Evil update!

    Sign Up For Our Newsletter
    (Not So) Quick Bites - Episode 3 - Writing About Writer's Block
    (Not So) Quick Bites - Episode 3 - Writing About Writer's Block
    Deliverables  |  consulting  |  application security  |  Secure Ideas  |  cybersecurity  |  methodology  |  Project  |  Writing  |  Quick Bites
    So, sometimes I have a real problem with writing, specifically reports and blog posts.  Somehow, ...
    Continue Reading
    Quick Bites Episode 2 - HTTP Security Headers and Why You NEED Them
    Quick Bites Episode 2 - HTTP Security Headers and Why You NEED Them
    Hi everybody!  So, after some feedback about the last “quick” Quick Bites  (thanks Josh!), I’ve ...
    Continue Reading
    Quick Bites - Finding Open Windows File Shares
    Quick Bites - Finding Open Windows File Shares
    Vulnerability  |  network  |  Secure Ideas  |  hacking  |  network security  |  Windows  |  scanning  |  methodology  |  how-to  |  Free
    Hi there, ladies and gentlemen! My name is Aaron Moss, and welcome to the first edition of Quick ...
    Continue Reading