2023-10-05
Hacking the Success Code: 6 Habits Every Penetration Tester Must Have
After have working professionally in cyber security as a penetration tester for half a decade (hacking scene for 10+), I feel I have learned a few things on how to improve your skill set, way of working and communicating with customers. I have also had the …
2023-09-19
Supercharge Your Integration Tests with the Power of Docker
In the beginning of my developer career, I learned to use in-memory databases for running integration tests. The in-memory database made it easy to spin up a local database which is often needed for integration testing. However, there are some drawbacks …
2023-09-12
Learn AI or Get Left Behind
The AI boom has not gone unnoticed, ChatGPT captured everyone’s attention with its science fiction like behavior, and the generative image AIs have gone super nova, disrupting everything we knew about art. We have not yet figured out what all this …
2023-09-02
Deploying Django with Github Actions and Docker
In this article, you will learn how to deploy your Django application to your VPS using Github Actions. If you want to, you can checkout one of my Django applications here, where I have implemented the steps described in this article. The main idea is that …
2022-11-20
Should you take a black box approach or a white box approach in penetration testing?
Lately, customers have been asking for a black box approach when performing a penetration test of their system/web application. During meetings, it has been clear to me that the stakeholders do not fully understand the differences between a white box and a …
2022-10-29
Measuring attack paths in web applications
Recently a customer asked us after our penetration test against their web application, the percentage of possible attack paths we had covered. It was a difficult question to answer because, a) the customer wanted us to focus on SQL injection and XSS (long …