Accepting Penetration Test Risks & How Compensating Controls Can Help
Tim Semchenko
December 17, 2024
Accepting Penetration Test Risks & How Compensating Controls Can Help

Tim Semchenko discusses documenting acceptance of risks and implementing compensating controls as options when pentest[…]

OPENSSL v3.0.x: Critical Threat Alert
Brad Herring
October 31, 2022
RAXIS THREAT ALERT: VULNERABILITY IN OPENSSL v3.0.x

In the cyberworld, news of a critical vulnerability affecting OpenSSL versions 3.0 – 3.0.6 will[…]

CVE-2022-35739: PRTG Network Monitor Cascading Style Sheets (CSS) Injection
Raxis Administrator
October 21, 2022
CVE-2022-35739: PRTG Network Monitor Cascading Style Sheets (CSS) Injection

This CSS vulnerability, discovered by Raxis lead penetration tester Matt Mathur, lies in a device’s[…]

CVE-2022-26653 & CVE-2022-26777: ManageEngine Remote Access Plus Guest User Insecure Direct Object References
Raxis Administrator
July 21, 2022
CVE-2022-26653 & CVE-2022-26777: ManageEngine Remote Access Plus Guest User Insecure Direct Object References

Raxis lead penetration tester Matt Dunn uncovers two more ManageEngine vulnerabilities (CVE-2022-26653 & CVE-2022-26777).

CVE-2022-25245: ManageEngine Asset Explorer Information Leakage
Raxis Administrator
June 7, 2022
CVE-2022-25245: ManageEngine Asset Explorer Information Leakage

Raxis lead penetration tester Matt Dunn discovers an information leakage vulnerability in ManageEngine’s Asset Explorer

CVE-2022-24681: ManageEngine AD SelfService Plus Stored Cross-Site Scripting (XSS)
Raxis Administrator
May 17, 2022
CVE-2022-24681: ManageEngine AD SelfService Plus Stored Cross-Site Scripting (XSS)

Raxis lead penetration tester Matt Dunn continues his prolific discovery of new cross-site scripting CVEs.[…]

Web App Testing: Part Two
Raxis Administrator
March 4, 2022
What is Web App Pentesting? (Part Two)

Lead penetration tester Matt Dunn continues his discussion about web application testing. In Part[…]

Penetration Testing Types
Bonnie Smyre
February 25, 2022
How to Hire a Penetration Testing Firm – Part 1

Raxis’ COO Bonnie Smyre offers some helpful hints about how to start the process of[…]

Web App Testing: Part One
Raxis Administrator
February 18, 2022
What is Web Application Penetration Testing?

Learn how Raxis approaches web application testing and how it differs from network penetration testing.[…]

Metaverse
Mark Puckett
December 21, 2021
Entering the Metaverse: You are the Real Commodity

Raxis’ CEO Mark Puckett explains why we might not wake up in the metaverse tomorrow,[…]

Metasploit Module: Azure AD Login Scanner
Raxis Administrator
November 23, 2021
New Metasploit Module: Azure AD Login Scanner

Raxis’ Matt Dunn has published another Metasploit module, this one describing a vulnerability in Azure’s[…]

Cross-Site Scripting: Filter Evasion & Sideloading Payloads
Raxis Administrator
November 12, 2021
Cross-Site Scripting (XSS): Filter Evasion and Sideloading

In this second in a series, learn how to perform Cross-Site Scripting (XSS) attacks such[…]

1 2 3
Next
Raxis company logo

2870 Peachtree Road
Suite #915-8924
Atlanta, GA 30305 USA

+1 678.421.4544

Contact Raxis
Contact Sales Team
Services
Penetration Testing as a Service
Penetration Testing
Red Team Services
Social Engineering
Attack Surface Management
Compliance
Resources
Blog
Raxis One
Transporter
Glossary
What is a Penetration Test?
What is an App Penetration Test?
About Raxis
About Us
Careers
Certifications

© 2024 Raxis, LLC – All rights reserved

Privacy PolicyTerms & Conditions