by Michael Gargiullo | Aug 18, 2017 | Penetration Testing
Editor’s Note: This post was originally published in February 2014 and has been updated for accuracy and comprehensiveness. I’m still surprised how often our clients want us to perform black box penetration testing on their internet facing systems, instead of...
by Michael Gargiullo | Jun 29, 2017 | Penetration Testing
After we perform an initial penetration test, we provide our clients with reports and review the results with them. It’s crucial they understand clearly what they need to fix and why. But often, when we circle back to do the remediation testing certain issues remain...
by Michael Gargiullo | May 16, 2017 | Ethical Hacking
One would think that most CISOs and IT security teams are at least cautiously optimistic about their ability to respond to cyber threats. But if the opinions of professional “white hat” hackers are any indication, the reality is that they are practically defenseless....
by Terry Crowley | Nov 22, 2016 | Penetration Testing
On a recent network penetration test our password catcher software sniffed out a service account logging in and caught its credentials. The hashed password we retrieved was nine characters long. With our homemade password cracking device (which has “only” four GPUs)...
by Terry Crowley | Nov 15, 2016 | Penetration Testing
Recently I visited a customer site for an on-site penetration test of a different color. This client informed me upon arrival that they wanted me to do my best to get onto their network with my laptop from inside the facility, without being blocked or observed by...
by Michael Gargiullo | Oct 18, 2016 | Ethical Hacking, Penetration Testing
Define: Internet of Things (IoT) The internet of things (IoT) is the internetworking of physical devices, vehicles, buildings, and other items; embedded with electronics, software, sensors, actuators, and network connectivity that enable these objects to collect and...
