How To

Master penetration testing with Raxis “How To” tutorials. Get expert, step-by-step guides to uncover and fix vulnerabilities in your organization.

the exploit blog logo
The Exploit: Penetration Testing Insights From The Frontlines

Articles Categorized as How To

  • Cool Tools Series: SCP
    Cool Tools Series: SCP
    Raxis Lead Penetration Tester Nathan Anderson continues our Cool Tool Series with SCP for data exfiltration on internal network pentests and red teams.
    Read More
  • Cool Tools Series: Reptyr
    Cool Tools Series: Reptyr
    Jason Taylor brings highlights reptyr in our Cool Tools series, showing how to take a long-running process, like an Nmap scan, and move it to a new screen.
    Read More
  • Five Things to Always Do After Getting Domain Admin
    Five Things to Always Do After Getting Domain Admin
    So you got DA on your red team or internal network penetration test. Here are the five things that Principal Penetration Tester Andrew Trexler does next.
    Read More
  • Wireless Series: Aircrack-ng
    Wireless Series: The Aircrack-ng Suite for All Your Wireless Pentesting Needs
    Principal Penetration Tester Scottie Cole continues our wireless series with the Aircrack-ng Suite, a set of tools for wireless pentest discovery and exploits.
    Read More
  • Bypassing a WAF and a CSP with Google Tag Manager: An Attacker’s Perspective and Remediation Advice
    Bypassing a WAF and a CSP with Google Tag Manager: An Attacker’s Perspective and Remediation Advice
    Ryan Chaplin takes an in-depth look at how attackers can use unsafe directives to bypass CSP, notably in Google Tag Manager, and how to remediate the issue.
    Read More
  • PSE & Red Team Series: Social Engineering
    PSE & Red Team Series: Social Engineering
    Lead Penetration Tester Nathan Anderson is back with more PSE and red team tips, including tailgating, impersonating, and pretexts to gain onsite access.
    Read More