by Lydia Zhang | Dec 27, 2021 | Pen Test Technical Tips
The Remote Desktop Protocol (RDP) is one of the most popular communication protocols used for remote control systems. It is used for most current Windows® operating systems, and allows users to remotely access servers or other computers by providing a graphical user...
by Lydia Zhang | Dec 23, 2021 | Pen Test Technical Tips
Oct. 7, 2021, US-CERT (United States Computer Emergency Readiness Team) tweeted “Active scanning of Apache HTTP Server CVE-2021-41773 & CVE-2021-42013 is ongoing and expected to accelerate, likely leading to exploitation. Please patch immediately if you haven’t...
by Lydia Zhang | Dec 14, 2021 | Pen Test Technical Tips
On November 24, 2021, Apache was notified about the Log4j remote code execution vulnerability by the Alibaba Cloud Security team. The vulnerability in the Apache Log4j Library has the potential for a wide-scale impact, which is actively being exploited in...
by Lydia Zhang | Nov 23, 2021 | Automated Pen Test Demo
This video demonstrates how the newly added “Flow Control” feature help you achieve a better penetration testing result. Starting from the release of RidgeBot 3.7, when a new task is created, you can choose RidgeBot’s stealth level which is the attack speed from one...
by Ridge Marketing | Nov 10, 2021 | RidgeBOT
The most comprehensive platform for penetration testing is now upgraded with stealth mode and more traffic controls RidgeBot is the most comprehensive, automated penetration testing tool covering network, host, and web apps. And today, we’re announcing even more...
by Ridge Marketing | Oct 19, 2021 | RidgeSecurity
Eighteen Teams Compete in Knowledge-based Challenge Leveraging RidgeBot PenTest Solution SANTA CLARA, Calif., October 19, 2021–(BUSINESS WIRE)–Ridge Security, cutting-edge pen-testing solution provider, sponsored a Capture the Flag (CTF) at the...
by Ridge Marketing | Oct 7, 2021 | RidgeSecurity
Ridge Security Secures Award for pioneering the most comprehensive pent-testing platform for risk-assessment SANTA CLARA, California, Ridge Security, cutting-edge pen-testing solution provider, is proud to share its nomination of the Most Innovative Vendor of the Year...
by Lydia Zhang | Sep 29, 2021 | Pen Test Technical Tips
After studying different vendors’ approaches, here is our summary of how to do SMB OS detection right. With either SMBv1 or SMBv2, both “Session Setup Request “and “NTLMSSP_NEGOTIATE requests” shall be sent;Especially for SMB v1, if only “Session Setup AndX Request”...
by Lydia Zhang | Sep 20, 2021 | Pen Test Technical Tips
The Study of Different Approaches from 4 Well-Known Vendors You may wonder “how does a blackbox penetration test tool know about my server information when it only has the server’s IP address?” The secret is a protocol, such as Sever Message Block (SMB),...
by Ridge Marketing | Sep 10, 2021 | Pen Test Technical Tips
Whether you conduct penetration testing an automated vulnerability scanning, knowing your target is the very essential first step. This process or technology is called Asset Profiling. In the asset profiling stage, the most important thing is to recognize the...