Nagios XI Stored Cross-Site Scripting (XSS): CVE-2021-38156
Nagios is open-source network and system monitoring software. Raxis’ Matt Dunn has discovered a cross-site scripting vulnerability that could leave users open to attack.
Discover the Art of Penetration Testing
The Exploit is Raxis’ cybersecurity blog where penetration testers and red team experts share real-world insights, attack techniques, and strategies to strengthen defenses against evolving threats. We feature expert advice, detailed breakdowns of exploits, and practical guidance to help organizations understand and respond to today’s most pressing security challenges.
Keep Your Cookies in the Cookie Jar: HttpOnly and Secure Flags
How can cookies be used against you? And how do you keep that from happening? Raxis’ Matt Dunn explains.
Hurricane Ida: Limiting the Damage
Lead penetration tester Scottie Cole is a Gulf Coast resident and former first responder. Read his tips for avoiding hackers and scams that can be as costly as a natural disaster.
Adam Fernandez, Lead Developer
Adam Fernandez has been a Raxis team member since 2017, an inventor since high school, and a security guy since birth. (Well, almost). Read about his amazing path to our company.
PRTG Network Monitor Stored Cross-Site Scripting Vulnerability (CVE-2021-29643)
Raxis lead penetration tester Matt Dunn uncovers a new vulnerability in the PRTG Network Monitor (CVE-2021-29643). Read more here.
Tim Semchenko, Senior Manager, Operations and Customer Delivery
Tim Semchenko’s diverse career brought him to Raxis where he serves as a senior manager. Find out about his love of family, music, and customer care.
Matt Mathur, Lead Penetration Tester
Meet Raxis lead penetration tester Matt Mathur, a cybersecurity professional with a passion for learning and for giving back.
Don’t Take the Smishbait
Unwanted text messages are annoying, but some also hide malicious links. Here are some ways to avoid being “smished.”
12 New Cyber Terms the World Needs Now
The cybersecurity profession has its own lingo. As experts in the field, the Raxis team felt compelled to add a few we thought were missing.
What Companies Should be Telling Investors about Cybersecurity
Investors shoulder much of a company’s cybersecurity risks. They deserve as much information about the safeguards as is prudent to reveal.
Blog Categories
- AI
- Careers
- Choosing a Penetration Testing Company
- Exploits
- How To
- In The News
- Injection Attacks
- Just For Fun
- Meet Our Team
- Mobile Apps
- Networks
- Password Cracking
- Patching
- Penetration Testing
- Phishing
- PTaaS
- Raxis In The Community
- Red Team
- Security Recommendations
- Social Engineering
- Tips For Everyone
- Web Apps
- What People Are Saying
- Wireless