Exploits
Blog Archive Category
The Exploit articles categorized as Exploits
-
CVE‑2020‑12812 and Why It’s Still an Issue Five Years Later
By Scottie Cole Principal Penetration Tester Scottie Cole explains why Fortinet released a new security advisory about CVE‑2020‑12812 and what your organization should check. January 16, 2026 -
Data Theft Exploit Part 2: DNS Exfiltration Attack
By Jason Taylor Raxis’ Jason Taylor is back with a detailed tutorial on performing both manual and automated DNS exfiltration attacks for pentesting. January 13, 2026 -
Why 8-Character Passwords Are No Longer Enough: Lessons from the Raxis Password Cracker
By Brad Herring With the start of 2026, the Raxis team is already busy. A new upgrade to our password-cracking system shows how quickly 8-character passwords can be cracked. January 9, 2026 -
Cross-Site Scripting (XSS): Cookie Theft – Advanced Payloads
By Raxis Research Team We reached into our vaults to bring you the final video in our cross-site scripting (XSS) series. Learn about cookie theft, website defacement, and CSRF attacks. December 18, 2025 -
Data Theft Exploit Part 1: DNS Exfiltration Setup
By Jason Taylor Raxis Lead Penetration Tester Jason Taylor’s in-depth tutorial explains setting up a server for DNS exfiltration. Check back next month to run the attack. December 16, 2025 -
Salesforce Compromise: What You Need to Know
By Jason Taylor The FBI has released information to help organizations that are affected by recent attacks against Salesforce. Raxis’ Jason Taylor sums up next steps here. October 15, 2025
