The Exploit

Notes from the Front Lines of Penetration Testing

Category: Penetration Testing

Discover expert-led penetration testing insights, real-world attack simulations, and best practices to uncover vulnerabilities and strengthen your security.
  • The following is a reenactment of a typical physical security assessment performed by a professional Raxis security engineer
    Here’s How Hackers Can Get Through Your Doors and Onto Your Network

    By

    Brian Tant
    Just a guy who left something at work and had to run back in? But that’s not my office, that’s not my badge, and, at sunset, my day is just getting started.
    Read More
  • Canned air attack
    Can This Simple Trick Outwit Your Smart Security?

    By

    Brad Herring
    Armed with nothing more than an ordinary can of cool, compressed air, a hacker can gain entry to a key-card-only access facility in just 19 seconds. Skeptical? See for yourself.
    Read More
  • Woman with padlocks
    Helping Nonprofits and Other Growing Businesses Understand Security Risks

    By

    Bonnie Smyre
    Raxis COO Bonnie Smyre was honored to be invited to write a guest blog post for NTEN, the Nonprofit Technology Network, about understanding security risks.
    Read More
  • Top Five Actions NOT to Take When Your Pentest Results are High Risk
    Top Five Actions NOT to Take When Your Pentest Results are High Risk

    By

    Brian Tant
    Raxis’ Brian Tant explains the worst thing to do with negative pentest results is to ignore them & why taking action thwarts hackers & increases your security.
    Read More
  • Raxis API Tool
    Raxis API Tool

    By

    Bonnie Smyre
    Raxis Lead Developer, Adam Fernandez, has developed a tool to use for testing JSON-based REST APIs, and we’re sharing this tool on GitHub to help API developers test their own code during the SDLC process and to prepare for third-party API penetration tests.
    Read More
  • Hacker in a ski mask
    Hopefully You’re Not Next

    By

    Mark Puckett
    Raxis CEO Mark Puckett discusses current cybersecurity threats and why it doesn’t pay to be complacent.
    Read More
  • Penetration Testing is a Critical Tool For Your Business
    Penetration Testing is a Critical Tool For Your Business

    By

    Brad Herring
    Raxis VP of Business Development discussed pentesting as a helpful tool. CISO’s need not fear “failing” a pentest… there is no failure worse than not know your vulnerabilities until it is too late.
    Read More
  • Server room interior in datacenter
    Your Security Gear Is Not Enough

    By

    Mark Puckett
    While security gear is an important part of keeping your company secure, Raxis CEO Mark Puckett discusses why it’s not all that is necessary to keep you safe from the latest threats.
    Read More
  • Petya ransonware screen capture
    Petya Ransomware Strikes Businesses Globally

    By

    Mark Puckett
    Raxis CEO discusses the newest major security malware, Petya ransomware. Learn what it is and how to prevent becoming a victim.
    Read More
  • Vulnerability Scan Vs Penetration Test: What's The Difference
    Vulnerability Scan Vs Penetration Test: What’s The Difference

    By

    Brad Herring
    Many people seem confused when it comes to understanding the difference between a vulnerability scan and a penetration test. In this article Raxis VP of Business Development Brad Herring examines the differences between the two and helps guide you with decision points in making the right choice for your needs.
    Read More
  • Access Denied
    Rising Above The Minimum Cyber Security

    By

    Brad Herring
    Raxis VP of Business Development looks back on 2016 and discusses current vulnerabilities and why your company should do more than the minimum required to stay secure.
    Read More
  • Pirate Flag: We have your data. Pay us or we will delete it all.
    Ransomware – What you can do to avoid being a victim

    By

    Brad Herring
    Raxis VP of Business Development Brad Herring discusses ways to protect your company from ransomware and how to be prepared in the event an attack occurs against your company.
    Read More