Introduction In this blog post, I will delve into a fascinating SQL Injection case that unfolded during a Black-box Web Penetration Test conducted for a university institution. The journey began with directory enumeration in the web application, leading me to stumble upon a portal page tucked away in the ‘/cms’ directory. Curiosity piqued, I decided […]
Art of External Network Penetration Testing – Phase First: Preparation
Introduction With the rapidly developing technologies in the digital world, the security measures of organizations are constantly evolving. This evolution makes proactive security measures such as “external network penetration testing” more important, especially to ensure the security of external networks and systems. In this article, we will focus on a critical phase of this type […]