What is Password Cracking and How Does it Work?
Password cracking is the process of recovering the plaintext password from a cryptographic hash or encrypted password, often through the…
Founder of Exploitr. OSCE and OSCP certified. I've spent 12+ years breaking into systems to help UK and international businesses understand their real security risks.
Exploitr Gains CREST Pathway Status
We are excited to announce that Exploitr has taken a significant step in our commitment to excellence within the cybersecurity…
What is a Red Team Engagement?
A red-team engagement is an advanced form of cybersecurity assessment where a team of ethical hackers, known as the red…
What is Penetration Testing?
Penetration testing, sometimes known as “pen testing”, “pentesting”, or “ethical hacking”, is a cybersecurity practice in which ethical hackers simulate…
What is Vulnerability Scanning?
Vulnerability scanning is a process used to identify security weaknesses and vulnerabilities in computer systems, servers, networks, or applications. It…
What is External Attack Surface Management (EASM)?
External Attack Surface Management (EASM) is the ongoing process of discovering, inventorying and monitoring all of an organisation’s externally facing…
Common Vulnerability Management Challenges
There is much more to vulnerability management than running a scanner and applying every missing patch that gets reported. Done…
Manually Implanting Backdoors in PE Files
Tools like msfvenom, Veil (formerly Veil-Evasion), Shellter , and others automate shellcode injection into PE files. In this post, we’ll…
Using an Egghunter to Exploit Minimal Buffer Overflows
Following on from my previous blog post on basic buffer overflows, this article will delve into slightly more advanced exploitation…