ntscx

OWASP Top 10 attack vectors, risks, and tools explained

What’s OWASP briefly OWASP stands for Open Web Application Security Project, a non-profit organization that’s focused on web application security standards, tools, and methodologies. OWASP top 10 in its turn stands for Top-10 major and wide-spread security risks of web applications (doesn’t matter backend or frontend ones). OWASP is a registered trademark of the OWASP foundation…

Read More

5 stages of penetration testing explained

Active and passive reconnaissance Passive reconnaissance Passive reconnaissance doesn’t include using actual pentesting utils, but rather is an analysis of what the organization looks like from within. The good start is to google as much information as you can about the target. You can search for job openings, financial reports, office photos. Especially useful information…

Read More