security

Scan Networks for Vulnerabilities With Nmap

Nmap is a free, open source tool for running scans on networks and discovering potential vulnerabilities. If you’re a pentester, Nmap is a crucial part of your reconnaissance for understanding the landscape of what you’re working with. As a develo...

Apr 14, 2019

Protect Yourself from Social Engineering

As developers, we’re a prime target for social engineering scams. Hacking people is much easier than hacking infrastructures, and developers have access to things that are especially appealing to attackers.

Apr 06, 2019

What Security Through Obscurity Is, and Why It's Evil

This article is an explanation of what security through obscurity is, why it’s terrible if it’s your only defense, and some ways in which you might be using it in your webapps. If you do pentesting, this will give you some tips on where to look in...

Mar 31, 2019

How to Find Subdomains (And Why You Should)

This is a guide to discovering website subdomains. I’ll be going over the basics of what subdomains are, why you should be searching for them, and how to actually find them.

Mar 25, 2019

How to Learn Penetration Testing: A Beginners Tutorial

Disclaimer: Hacking is a difficult skill to learn. You will not become a good pentester by just doing a few online courses. You will not become a good pentester by just installing Kali Linux. This is a challenging path, wrought with endless frustr...

Mar 15, 2019

How to Exploit Format String Vulnerabilities

A quick and easy guide to exploiting format strings. Assumed knowledge: C Hexadecimals

Nov 21, 2018