Contact us Customer login Book a demo
Support
Support
English
Gartner®️ Quick Answer: Key Objectives of Blue, Red and Purple Teams
Read more
Rapport d'enquête sur l'état des tests de pénétration 2023
Read more
The State of Pentesting 2024 Survey Report
Read more
Topics
Blog
Topics
Attack Surface Monitoring Cloud Security Cybersecurity Research Enterprise-Wide Security Validation Penetration Testing Pentera Labs Ransomware Resilience Red Teaming Segmentation SOC Optimization Vulnerability Prioritization
Penetration Testing
Managing the Financial Industry’s Attack Surface Read more>
Cloud Security
Tackling Cloud Security Challenges Read more>
Cloud Security
Next-Gen Cloud Security Solutions Read more>
Blueprint for Success: Implementing a CTEM Operation
The attack surface isn’t what it once was and it’s becoming a nightmare to protect. A constantly expanding and evolving attack surface means risk to t...
Pentera Research

Surviving LockBit Lessons from a Ransomware Attack

On April 13, 2023, we were hit hard. The University of Health Sciences and Pharmacy (UHSP) faced a serious adversary: The notorious LockBit ransomware...
Zachary Lewis, AVP IT & CISO, University of Health Sciences and Pharmacy in St. Louis

Return of the RCE: Addressing the regreSSHion Vulnerability – CVE-2024-6387

A Regrettable Resurgence On July 1, 2024, the Qualys Threat Research Unit (TRU) published their discovery of an unauthenticated remote code executio...
Or Smolnik, Product Manger at Pentera

Zero footprint attacks: 3 steps to bypass EDR with reflective loading

EDR (Endpoint Detection and Response) evasion techniques are becoming increasingly common amongst attackers as they evolve their strategies to bypass ...
Pentera Research
Cloud Security

Fundamentals of Cloud Security Stress Testing

“Defenders think in lists, attackers think in graphs” said John Lambert from Microsoft, distilling the fundamental difference in mindset between those...
Michal Brenner, Senior Director Of Product Marketing at Pentera

Verizon’s 2024 Data Breach Investigations Report: Key insights

The 2024 Data Breach Investigations Report (DBIR) is out, providing an in-depth look at the latest trends in cybersecurity. This year's findings revea...
Dana Meschiany, Senior Content Marketing at Pentera
2024 State of Pentesting Survey
Download

Pentera’s 2024 report reveals hundreds of security events per week, highlighting the criticality of continuous validation

Over the past two years, a shocking 51% of organizations surveyed in a leading industry report have been compromised by a cyberattack. Yes, over half....
Pentera Research
Penetration Testing

Managing the Financial Industry’s Attack Surface

The financial services industry has always been at the forefront of technology adoption, but the 2020 pandemic accelerated the widespread use of mobil...
Michal Brenner, Senior Director Of Product Marketing at Pentera
Cloud Security

Tackling Cloud Security Challenges

As much as we love the cloud, we fear it as well. We love it because cloud computing services of Amazon, Azure, and Google have transformed operati...
Aviv Cohen, CMO at Pentera
Begin your security validation journey
Request a demo
Book your demo now >
Vulnerability Prioritization
Limitations of CVE Management as a Primary Strategy
With only about 15% of vulnerabilities actually exploitable, patching every vulnerability is not an effective use of time.   As a...
Alex Spivakovsky, VP Research at Pentera
SOC Optimization

Enhancing QA with Shift-Left Testing

This article is part of Pentera’s Engineering Series – a behind-the-scenes look at the technologies we develop to keep companies secure. In this pie...
Niv Shimoni, Director of QA & Scrum Master at Pentera
5 steps to mitigate risk of credential exposure
Ransomware Resilience

Steps to Mitigate Credential Exposure Risks

Every year, billions of credentials appear online, be it on the dark web, clear web, paste sites, or in data dumps shared by cybercriminals. These c...
Eli Domoshnitsky, Product Manager at Pentera

WiFi, the untested attack surface

Much of a company’s assets are connected to Wi-Fi networks. However, security teams are often less likely to validate these networks. This pushed us...
Pentera Research
Enterprise-Wide Security Validation
The Ultimate Security Validation Checklist for CISOs
If you're heading out of the office on a well-deserved vacation, are you certain the security controls you have in place will let you rest easy whil...
Omer Gafni, VP R&D at Pentera
Cybersecurity Research

The Shift from Port 445 to Port 135 in Cybersecurity

If it was possible to nominate a command-line utility for an award, PsExec would definitively win the most useful category. This tool allows adminis...
Yuval Lazar, Technical Product Manager & Senior Security Researcher at Pentera
Vulnerability Prioritization

Protecting Data from XSS Vulnerabilities in Azure

Cloud-based services are a growing asset for enterprises to optimize scale and reduce deployment efforts. In our research, we found a web XSS...
Uriel Gabay, Security Researcher at Pentera
EASM2
Attack Surface Monitoring

Importance of External Attack Surface Management

External Attack Surface Management (EASM) tools are not new, but only this year has Gartner named this category as a top trend to keep an eye on in ...
Ofer Yavelberg, Sr. Director of Product Management at Pentera
The Buyer's Guide to Security Validation
Download
Cybersecurity Research

Understanding the Security Aspects of Linux eBPF

2022 discoveries of new privilege escalation techniques Reading this blog will allow you to understand the eBPF mechanism and how a fairly sm...
Matan Liber, Cyber Research Team Lead at Pentera