Search

Home

PNPT Studies

PJPT Studies

AD CS / Certificate Attacks (ESC1-15) (1, 8, 11 for now)

Report Writing / Client Presentation

Operationalizing Cybercrime Data (June 2025)

/

External Pentest Playbook

/

Common Pentest Findings (External Testing)

Common Pentest Findings (External Testing)

Insufficient Authentication Controls Weak Password Policy Insufficient Patching Default Credentials Insufficient Encryption (The Most by far)Information Disclosure Username Enumeration Default Web Pages Open Mail Relays IKE Aggressive Mode Unexpected Perimeter Services Insufficient Traffic Blocking Undetected Malicious Activity Historical Account Compromises