Posts Tagged ‘web penetration testing’


An Introduction to Javascript for XSS Payloads

November 19, 2016

I recently got the opportunity to speak at B-Sides Charleston on cross-site scripting (XSS) payload development. For me, this was a really enjoyable opportunity because of my background. I was […]


Introducing Burp Correlator!

August 14, 2015

This one is for you web penetration testers!  This new Burp extension is designed to help with efficiency when you are testing a complex application full of parameters or a […]


SamuraiWTF 3.2 RELEASED!

May 19, 2015

We are really excited to announce that SamuraiWTF 3.2 is now available publicly.  This release is available at immediately and we hope you enjoy it. In this release we […]


And Now… Introducing: Burp BS!

May 4, 2015

Burp BS… where the “BS” stands for BeanShell.  “What on earth is BeanShell?” you may ask?  BeanShell is a very old Java library that was designed to build scripts in […]


Web Penetration Testing with Burp and CO2

December 10, 2014

Start 2015 right with a free web session to learn all about the Burp CO2 plugin!  This training is scheduled for Thursday, January 8th, 2015 at 2pm EST. Portswigger’s Burp […]


SamuraiWTF 3.0 and into the future!

November 30, 2014

We are really excited to announce that SamuraiWTF 3.0 is now available publicly.  (We did a previous release but found some issues and so that was pulled back.)  This release […]


CORS Global Policy

September 10, 2014

I recently noticed an uptake on Cross-Origin Resource Sharing (CORS) findings showing up in automated scanning tools, which would not have been a significant concern except for the fact that […]


Professionally Evil Courses: Ride Along Penetration Testing

September 9, 2014

Secure Ideas is excited to announce the latest class in our Professionally Evil Course series: Ride Along Penetration Testing.  This course will be held on October 9th at 2PM eastern. Unlike […]


Professionally Evil Web Penetration Testing Class

May 12, 2014

Ever thought about being able to test the security of your web applications? Wanted to know how the Professionally Evil hack web services and applications?  Interested in upgrading your skills around […]


Professionally Evil Training: Advanced Tactical Burp Webinar

May 2, 2014

Secure Ideas is excited to announce its latest upcoming online training.  We will be offering a two-hour session exploring advanced topics related to Burp Suite and its use in a web […]