Matt Mathur, Lead Penetration Tester
Meet Raxis lead penetration tester Matt Mathur, a cybersecurity professional with a passion for learning and for giving back.
Discover the Art of Penetration Testing
The Exploit is Raxis’ cybersecurity blog where penetration testers and red team experts share real-world insights, attack techniques, and strategies to strengthen defenses against evolving threats. We feature expert advice, detailed breakdowns of exploits, and practical guidance to help organizations understand and respond to today’s most pressing security challenges.
Don’t Take the Smishbait
Unwanted text messages are annoying, but some also hide malicious links. Here are some ways to avoid being “smished.”
12 New Cyber Terms the World Needs Now
The cybersecurity profession has its own lingo. As experts in the field, the Raxis team felt compelled to add a few we thought were missing.
What Companies Should be Telling Investors about Cybersecurity
Investors shoulder much of a company’s cybersecurity risks. They deserve as much information about the safeguards as is prudent to reveal.
ManageEngine Applications Manager Stored Cross-Site Scripting Vulnerability (CVE-2021-31813)
Raxis’ Matt Dunn has discovered another ManangeEngine cross-site scripting (XSS) vulnerability, this time in the Applications Manager product (CVE-2021-31813).
What You Need to Know (But Were Afraid to Ask) about Raxis Web App Testing
When testing web apps, the diverse skills Raxis brings to the table ensure that you get meaningful, actionable findings that will make your app more secure.
ManageEngine Key Manager Plus Cross-Site Scripting Vulnerability (CVE-2021-28382)
Raxis’ Lead Penetration Tester Matt Dunn discovers another cross-site scripting vulnerability in Zoho’s MangeEngine Key Manager Plus (CVE-2021-28382).
Raxis’ Transporter Enables Remote Penetration Testing
Tim Semchenko explains how Raxis Transporter enables our team to conduct internal and wireless penetration tests remotely.
Realistically Assessing the Threat of Clickjacking Today: A Penetration Tester Perspective
Raxis’ Lead Developer Adam Fernandez discusses clickjacking, explaining what it is and why it represents less of a threat now than it once did. Adam also talks about how clickjacking differs from similar attacks.
Cross-Site Scripting Vulnerability in ManageEngine AD Self Service Plus (CVE-2021-27956)
Raxis lead penetration tester Matt Dunn has uncovered a new cross-site scripting vulnerability in Manage Engine AD Self Service Plus (CVE-2021-27956). Find out more here.
Blog Categories
- AI
- Careers
- Choosing a Penetration Testing Company
- Exploits
- How To
- In The News
- Injection Attacks
- Just For Fun
- Meet Our Team
- Mobile Apps
- Networks
- Password Cracking
- Patching
- Penetration Testing
- Phishing
- PTaaS
- Raxis In The Community
- Red Team
- Security Recommendations
- Social Engineering
- Tips For Everyone
- Web Apps
- What People Are Saying
- Wireless