by Lydia Zhang | Feb 24, 2022 | AI in Automated Pen Test
According to IBM’s Cost of a Data Breach Report, the average total cost of a data breach increased approximately 10% between 2020 and 2021, “the largest single year cost increase in the last seven years.” The study points to several factors that helped mitigate the...
by Lydia Zhang | Jan 25, 2022 | Pen Test Technical Tips
We’ve all read the headlines about the recent online banking scam that hit a bank in the Philippines. The investigation into the scam is still on-going, with findings being revealed before the end of the month. The incident...
by Lydia Zhang | Nov 23, 2021 | Automated Pen Test Demo
This video demonstrates how the newly added “Flow Control” feature help you achieve a better penetration testing result. Starting from the release of RidgeBot 3.7, when a new task is created, you can choose RidgeBot’s stealth level which is the attack speed from one...
by Lydia Zhang | Sep 29, 2021 | Pen Test Technical Tips
After studying different vendors’ approaches, here is our summary of how to do SMB OS detection right. With either SMBv1 or SMBv2, both “Session Setup Request “and “NTLMSSP_NEGOTIATE requests” shall be sent;Especially for SMB v1, if only “Session Setup AndX Request”...
by Lydia Zhang | Sep 20, 2021 | Pen Test Technical Tips
The Study of Different Approaches from 4 Well-Known Vendors You may wonder “how does a blackbox penetration test tool know about my server information when it only has the server’s IP address?” The secret is a protocol, such as Sever Message Block (SMB),...