Penetration Testing

Discover expert-led penetration testing insights, real-world attack simulations, and best practices to uncover vulnerabilities and strengthen your security.

the exploit blog logo
The Exploit: Penetration Testing Insights From The Frontlines

Articles Categorized as Penetration Testing

  • AI-Augmented Series: AI Scripting for Brute-Forcing on a Web App Pentest
    AI-Augmented Series: AI Scripting for Brute-Forcing on a Web App Pentest
    On a recent web app pentest, Andrew Trexler used AI to find client-side code that stopped his brute-force attack then used AI again to thwart that code.
    Read More
  • Wireless Series: Aircrack-ng
    Wireless Series: The Aircrack-ng Suite for All Your Wireless Pentesting Needs
    Principal Penetration Tester Scottie Cole continues our wireless series with the Aircrack-ng Suite, a set of tools for wireless pentest discovery and exploits.
    Read More
  • Data Theft Exploit: DNS Exfiltration Attack
    Data Theft Exploit Part 2: DNS Exfiltration Attack
    Raxis’ Jason Taylor is back with a detailed tutorial on performing both manual and automated DNS exfiltration attacks for pentesting.
    Read More
  • Why 8-Character Passwords Are No Longer Enough: Lessons from the Raxis Password Cracker
    Why 8-Character Passwords Are No Longer Enough: Lessons from the Raxis Password Cracker
    With the start of 2026, the Raxis team is already busy. A new upgrade to our password-cracking system shows how quickly 8-character passwords can be cracked.
    Read More
  • The Future of Security: Why AI-Augmented Penetration Testing Is the Only Way Forward
    The Future of Security: Why AI-Augmented Penetration Testing Is the Way Forward
    Raxis CEO Mark Puckett looks back at a year of many changes and forward to the ways AI-augmented pentesting is changing the industry.
    Read More
  • Data Theft Exploit: DNS Exfiltration Setup
    Data Theft Exploit Part 1: DNS Exfiltration Setup
    Raxis Lead Penetration Tester Jason Taylor’s in-depth tutorial explains setting up a server for DNS exfiltration. Check back next month to run the attack.
    Read More