Raxis Blog Categories

As a leading penetration testing company, Raxis delivers expert-led, authorized cyberattacks.

Raxis Blog Posts by Category

Exploits

  • Microsoft Releases Security Patch for Actively Exploited On-Premises SharePoint Vulnerabilities
    Microsoft Releases Security Patch for Actively Exploited On-Premises SharePoint Vulnerabilities
    Microsoft has released patches for two critical vulnerabilities allowing unauthenticated remote code execution that affect on-premises SharePoint installations.
    Read More
  • OWASP Top 10 for LLM Applications
    OWASP Top 10 for LLM Applications Penetration Testing
    Lead Penetration Tester Jason Taylor looks at OWASP’s Top 10 list for LLM applications for penetration testing as AI machine learning becomes prevalent.
    Read More
  • Wireless Series: Using Wifite to Capture and Crack a WPA2 Pre-Shared Key
    Wireless Series: Using Wifite to Capture and Crack a WPA2 Pre-Shared Key for Penetration Testing
    Principal Penetration Tester Scottie Cole begins our wireless penetration testing series with capturing and cracking a WPA2 Pre-Shared Key using Wifite.
    Read More
  • Jailbreak Journey: Transforming an iPad for Mobile App Penetration Testing
    Jailbreak Journey: Transforming an iPad for Mobile App Penetration Testing
    Lead Penetration Tester Jason Taylor takes us step-by-step through jailbreaking an iPad 7 for use in penetration testing.
    Read More
  • Cisco Releases Patch for CVE-2025-20188 - 10.0 CVSS
    Cisco Releases Patch for CVE-2025-20188 – 10.0 CVSS
    Critical Alert – Patch Immediately. Cisco Releases Patch for CVE-2025-20188 – 10.0 CVSS. This vulnerability affects Cisco Catalyst 9800 wireless controllers.
    Read More
  • Cool Tools Series: CeWL
    Cool Tools Series: CeWL for Penetration Testing
    Lead Penetration Tester Jason Taylor discusses how the CeWL Custom Word List generator can improve hashcat results for penetration testing.
    Read More
  • AD Series: Using Evil-WinRM to Get NTDS Manually
    AD Series: Using Evil-WinRM to Get NTDS Manually in Penetration Tests
    Principal Penetration Tester Andrew Trexler’s Active Directory series is back, showing how to use Evil-WinRM to copy NTDS.dit manually in penetration tests.
    Read More
  • Password Series: 8 Practical First Steps to Crack Difficult Passwords
    Password Series: 8 Practical First Steps to Crack Difficult Passwords in Penetration Tests
    From rulesets & hardware to wordlists and mask attacks, Lead Penetration Tester Ryan Chaplin shows how to crack difficult password hashes in penetration tests.
    Read More
  • Password Series: Defeating Emerging Password Security Trends with Psudohash
    Password Series: Defeating Emerging Password Security Trends with Psudohash for Penetration Testing
    Lead Pentester Ryan Chaplin discusses emerging improvements in password security and how Psudohash can help bypass them on penetration tests.
    Read More
  • Cool Tools Series: MSFvenom
    Cool Tools Series: How MSFvenom Powers Penetration Testing
    Nathan Anderson intros MSFvenom, a Metasploit tool that generates & encodes payloads to obtain reverse shells & gain network access for penetration testing.
    Read More
  • Cool Tools Series: Nuclei
    Cool Tools Series: Nuclei for Penetration Tests
    Raxis’ Andrew Trexler shows how useful Nuclei is for network and application penetration tests, discovering vulnerabilities such as default passwords and more.
    Read More
  • Password Length: More than Just a Question of Compliance
    Password Length: More than Just a Question of Compliance
    Password length requirements are a key part of password security, but, with PCI, NIST, OWASP, and CIS offering different recommendations, what length is best?
    Read More

Categories