The different approaches to Web pentesting
By on 03/04/2025 in the Ethical Hacking category
Penetration testing, or pentesting, is an essential step in assessing the security of web applications. It involves simulating attacks in order to identify and correct potential vulnerabilities. Different approaches to pentesting exist, each offering a unique perspective on system security. The main methods are blackbox, greybox and whitebox testing.
Learn Web Hacking: The Best Resources
By on 02/19/2025 in the Ethical Hacking category
If you love cybersecurity and want to start web pentesting, you're in the right spot.
I'm excited to share a list of resources and platforms that helped me start and continue in my career.
You'll find guides, training platforms, and GitHub repositories here.
Fix XSS on formatted text with iframe sandbox
By on 03/07/2023 in the Ethical Hacking category
To fix an XSS on formatted text, it is not possible to simply encode the data, as this would remove all possibility of text formatting. This is where the "sandbox" parameter of the HTML "iframe" tags will make our life easier. Indeed, this parameter is designed to automatically clean what is in the iframe from anything that could be dangerous, while keeping the harmless HTML tags.
Why perform a penetration test
By on 02/12/2023 in the Ethical Hacking category
A penetration test is a form of security audit that consists in trying to hack a system (web application, servers, company network...) using the same tools as a real attacker.
- Pentest vs Bug Bounty: what are the differences and what's in it for you?
- Exploit SQL Injections with SQLMap : Complete Guide
- How often should I run a penetration test on my website?
- 5 cybersecurity mistakes that small businesses still make too often
- Understanding and protecting against XSS (Cross-Site Scripting) vulnerabilities
Subscribe to RSS Feed
Do you have questions about your system's security, need a pentest, or want to train your teams in best practices?