Jason Taylor Avatar

Jason Taylor

Jason has a passion for asking “what-if” questions and for trying to “break” software and test how it responds to unintended uses. Jason has a background in System Administration and Security Engineering in the financial sector. He holds both defensive and offensive certifications including OSCP, PNPT, GCIH, CASP+, and is Splunk Certified. When he’s not spending his time taking new training courses, he loves spending time with his wife and kids and occasionally working on an IoT project to automate some aspect of their greenhouse or chicken coop.

the exploit blog logo
The Exploit: Penetration Testing Insights From The Frontlines

The Exploit articles written by Jason Taylor

  • Data Theft Exploit: DNS Exfiltration Attack
    , , , ,

    Data Theft Exploit Part 2: DNS Exfiltration Attack

     By Jason Taylor Raxis’ Jason Taylor is back with a detailed tutorial on performing both manual and automated DNS exfiltration attacks for pentesting. January 13, 2026
  • Data Theft Exploit: DNS Exfiltration Setup
    , , , ,

    Data Theft Exploit Part 1: DNS Exfiltration Setup

     By Jason Taylor Raxis Lead Penetration Tester Jason Taylor’s in-depth tutorial explains setting up a server for DNS exfiltration. Check back next month to run the attack. December 16, 2025
  • Salesforce Compromise: What You Need to Know
    , , ,

    Salesforce Compromise: What You Need to Know

     By Jason Taylor The FBI has released information to help organizations that are affected by recent attacks against Salesforce. Raxis’ Jason Taylor sums up next steps here. October 15, 2025
  • Copilot Coming Soon to a Desktop Near You
    ,

    Microsoft Copilot Coming Soon to a Desktop Near You

     By Jason Taylor With Microsoft automatically installing Copilot on Windows systems with Microsoft 365 desktop apps installed, organizations will want to set up AI policies. October 2, 2025
  • HTTP/1.1 Security News: What You Can Do Now
    ,

    HTTP/1.1 Security News: What You Can Do Now

     By Jason Taylor A recent Portswigger white paper on HTTP/1.1 highlights critical security issues. If you use old products that still require it, here’s what you can do. September 16, 2025
  • Microsoft Releases Security Patch for Actively Exploited On-Premises SharePoint Vulnerabilities
    , , ,

    Microsoft Releases Security Patch for Actively Exploited On-Premises SharePoint Vulnerabilities

     By Jason Taylor Microsoft has released patches for two critical vulnerabilities allowing unauthenticated remote code execution that affect on-premises SharePoint installations. July 22, 2025