Vulnerability Analysis
Resources Blog

Vulnerability Analysis

Keep up to date with the latest offensive security news, knowledge, and resources.
Vulnerability Hunting a Retired App Part 1 - Auth Bypass
Mar 03, 2026

Vulnerability Hunting a Retired App Part 1 - Auth Bypass

Nick Aures
Senior Penetration Tester
Decompiling a retired .NET application reveals how a single middleware misconfiguration leads to full authentication bypass.
READ
Putting the Token Before the Cart? A Guide on E-Commerce API Pentesting
Feb 26, 2026

Putting the Token Before the Cart? A Guide on E-Commerce API Pentesting

Nate Fair
Senior Penetration Tester
Why traditional API pentests miss real commerce risk and how cart tokens, checkout flows, and cross-layer auth gaps expose customer data.
READ
6 Stages of the Vulnerability Management Lifecycle
Jan 08, 2025

6 Stages of the Vulnerability Management Lifecycle

The vulnerability management lifecycle is a structured approach to managing potential security weaknesses in information systems.
READ
Vulnerability Testing: Process, Methods & Best Practices
Dec 27, 2024

Vulnerability Testing: Process, Methods & Best Practices

Vulnerability testing is the process of identifying, assessing, and addressing security weaknesses in systems, networks, or applications
READ
Penetration Testing vs Vulnerability Testing: 6 Key Differences
Dec 18, 2024

Penetration Testing vs Vulnerability Testing: 6 Key Differences

Penetration testing, or pentesting, simulates an attack on a system to evaluate its defenses. Vulnerability testing identifies and evaluates system security weaknesses.
READ
What Is Vulnerability Scanning as a Service (VSaaS)?
Dec 12, 2024

What Is Vulnerability Scanning as a Service (VSaaS)?

Vulnerability scanning as a service is a solution that uses cloud-based tools to identify vulnerabilities in an organization's digital infrastructure.
READ
1 2