Can I See Your “USER AGENT” Please?
Recently, on an assessment, I was working on trying to bypass AMSI+EDR in order to get our lovely Cobalt Strike beacon to phone home. After assessing the target environment, I […]
Recently, on an assessment, I was working on trying to bypass AMSI+EDR in order to get our lovely Cobalt Strike beacon to phone home. After assessing the target environment, I […]
Many of you know this is one of our favorite local cybersecurity conferences to attend! We are so excited to be exhibiting and presenting again this year, so be sure […]
Burp Suite Professional’s User Interface is one of the most advanced Java UIs out there, but everyone has a bad day now and then. Frustratingly, the tool’s Message Editor can […]
Burp Suite has some really cool features that make it useful as an HTTP Swiss Army Knife. It’s great for debugging and acting as a middle translation layer to duct […]
We’ve all had this experience: Your password is required to be changed every so often, and now you’ve got to come up with a new one. While security-conscious people often […]
Penetration Testing is often an exercise of observing the behavior of the target, and then finding creative ways to subvert its expectations to trigger an unusual (security-impacting) behavior. Sometimes the […]
Following our initial release of the addToTLSPassThrough Burp Suite Extension, we are pleased to announce publication of version 1.0.1! AddToTLSPassThrough 1.0.1 Significant improvements to the extension have been added to […]
Pentesting and bug bounty hunting go hand-in-hand. Several of our pentesters find joy in bug bounty hunting in their free time, and one of our own, Chris Inzinga, will be […]
One of the reasons that Burp Suite has become a standard tool for Web Application Penetration Testing is the ecosystem of Extensions that enable it to support new functionality. Sometimes […]
Each year, hundreds of students compete in the Collegiate Cyber Defense Competition. Starting off the 2024 year with loads of excitement is the Midwest Regional Collegiate Cyber Defense Competition (MWCCDC) […]