The Exploit Blog | Penetration Testing & Cybersecurity Insights by Raxis

Discover the Art of Penetration Testing

The Exploit is Raxis’ cybersecurity blog where our penetration testers and red team experts share real-world insights, attack techniques, and strategies to strengthen defenses against evolving threats. We feature expert advice, detailed breakdowns of exploits, and practical guidance to help organizations understand and respond to today’s most pressing security challenges.

Why 8-Character Passwords Are No Longer Enough: Lessons from the Raxis Password Cracker

By Brad Herring

Posted in In The News, Networks, Password Cracking, Penetration Testing, Security Recommendations

With the start of 2026, the Raxis team is already busy. A new upgrade to our password-cracking system shows how quickly 8-character passwords can be cracked.

AI | Penetration Testing

The Future of Security: Why AI-Augmented Penetration Testing Is the Way Forward

By Mark Puckett

Posted in AI, Penetration Testing

Raxis CEO Mark Puckett looks back at a year of many changes and forward to the ways AI-augmented pentesting is changing the industry.

Exploits | How To | Web Apps

Cross-Site Scripting (XSS): Cookie Theft – Advanced Payloads

By Raxis Research Team

Posted in Exploits, How To, Web Apps

We reached into our vaults to bring you the final video in our cross-site scripting (XSS) series. Learn about cookie theft, website defacement, and CSRF attacks.

Exploits | How To | Networks | Penetration Testing | Red Team

Data Theft Exploit Part 1: DNS Exfiltration Setup

By Jason Taylor

Posted in Exploits, How To, Networks, Penetration Testing, Red Team

Raxis Lead Penetration Tester Jason Taylor’s in-depth tutorial explains setting up a server for DNS exfiltration. Check back next month to run the attack.

AI | In The News

Autonomous Supply-Chain Worm Compromises Postman, PostHog, Zapier, and 26k Others

By Ryan Chaplin

Posted in AI, In The News

Operating fully autonomously, this new supply-chain malware has compromised Postman, PostHog, Zapier and 26k others. Learn what your organization should do now.

Search The Exploit

Stay up to date with the latest in penetration testing

Name(Required)

First Last

Email(Required)

Newsletter(Required)

Do you wish to join our newsletter? We send out emails once a month that cover the latest in cybersecurity news. We do not sell your information to other parties.

Yes! Please send me Popped Culture, the Raxis Newsletter.

Cybersecurity Insights From The Frontlines

Discover the Art of Penetration Testing

Why 8-Character Passwords Are No Longer Enough: Lessons from the Raxis Password Cracker

The Future of Security: Why AI-Augmented Penetration Testing Is the Way Forward

Cross-Site Scripting (XSS): Cookie Theft – Advanced Payloads

Data Theft Exploit Part 1: DNS Exfiltration Setup

Autonomous Supply-Chain Worm Compromises Postman, PostHog, Zapier, and 26k Others

Search The Exploit

Stay up to date with the latest in penetration testing

Blog Categories

Company Information

Resources

Penetration Tests