Dear PenTest Readers! We are pleased to present you the teaser of the newest issue of PenTest Magazine. And what awaits you inside? We have chosen one article from the issue to present you some of its content. Using XSS in a Spear-Phishing Attack By Carlos A. Lozano When a client asks for a social engineering tests, [...]

Dear Readers, We would like to present you the fourth issue of PenTest Open – a free monthly publication, which gives you the possibility to read some of our articles from the last month and from upcoming publications. This time we present you a summary of the April’s publications. You will find some tips from [...]

Today and today only you can order the full issue of this StarterKit for only 15USD. Order today and tomorrow you will gain access to download the full issue. Dear PenTest Readers We are proud to announce a new line of our Magazine – PenTest StarterKit and to present you the first issue’s teaser. And [...]

Dear PenTest Readers! We are proud to present you the teaser of the newest PenTest Extra Magazine. We have chosen three articles from the issue to present you some of its content. From the first part entitled ‘Total System Compromise’, let’s have a look at ‘A Road Map to Compromise a System’ by Nitin Goplnani, [...]

Dear Readers, We would like to present you the third issue of PenTest Open – a free monthly publication, where you can read some of our best articles from last month. This time you will find here a selection of really good tutorials written by our best authors and experienced pentesters. We hope that this [...]

Dear PenTest Readers! We are pleased to present you the newest issue of PenTest Magazine. In the March issue, we have decided to focus on various important aspects of penetration testing. The first section is devoted to Social Engineering. Here you will find four interesting articles, such as Lurking in the Shadows of the Social [...]

Read a sample of Chapter 3: GPEN Study Guide You will find there covered topics like: Pen-testing Foundations, Pen-testing process, Legal Issues, Reconnaissance, Intro to Linux and Scanning Goals and Techniques.

Dear Readers, In upcoming week we will release the new PenTest Auditing&Standsards dedicated to Supervisory Control and Data Acquisition. However, on today you can read in our Teaser one full article from that issue! SCADA Device Security – Threats, Hackers and How to Protect Against Them By Alan Grau from Icon Labs SCADA protocols themselves [...]

Many organizations – both public and private – nowa-days, have implemented and developed their own security risk assessment template tool. The main goal for the template is first to analyse work-flow, then to identify the assets, threat sources and vulnerabilities.

Launching Phishing and Spam attacks on Android with Customized Notifications by Sencun Zhu and Zhi Xu Existing notification service on Android is lack of view authentication information. Any installed app could abuse the notification service to launch phishing and spam notification attacks. Further, by customizing the displayed notifications carefully, the sender app can prevent being [...]

Most people exclude the client from their list when they think about WLAN security.  This article will prove beyond doubt why the client is just as important as the access point when penetrating testing a WLAN network. The client can be either a connected or isolated un-associated client. We will look at various attacks, which can be used to [...]

Security is the number one concern for cloud adoption, and a particular point of discussion among analysts and industry experts. Deployment of cloud applications is daunting when you consider the risks of having your applications, infrastructure, IP and private information in the cloud. Yet the cloud bears an abundance of benefits to today’s enterprise – [...]