Blog

Welcome to our Cybersecurity blog. Here at NaviSec, our engineers live and breathe cybersecurity 24×7. We are constantly performing research, improving our custom tool sets, appliances, and TTPs. We learn from others in our industry and offer our own experience back to the cyber security community through webinars, podcasts, blog articles, and through our work with high school and college interns and constantly look for other ways to ‘sharpen our ax’.

In our cybersecurity blog below, you will find a sample of our research and simply put our passion in giving back to the community. Our series titled A Pentesters Guide is frequently referenced and linked in independent research and other cyber security companies in our peer group – just as we learn and implement important research and tools from our peer cybersecurity companies.
Please contact us if there is a topic you would like to see a blog article written or if you would like to request one of our cybersecurity experts to visit your podcast or other cybersecurity panel.

NaviSec Discovers Critical Zero-Day Exploit for Cacti Services

April 7, 2022

While conducting offensive security testing for a third-party client, NaviSec’s Delta Team discovered a critical zero-day exploit for all versions of Cacti services prior to

Cybersecurity for Connected Medical Device Manufacturers

March 28, 2022

Health information has always been a valuable target for malicious actors. Unfortunately, the proliferation of connected medical devices has created an increasing attack surface for

Penetration Testing GLBA

GLBA and the Penetration Testing Mandate: Everything You Need to Know

March 4, 2022

Over the past decade, we have primarily become denizens of a digitalized world. All our personal and professional data now gets accumulated in a digital

Pentesting for Medical Vendors

The Importance of Penetration Testing for Medical Software and Medical Device Vendors

February 23, 2022

As a healthcare vendor, it is important to know if or how your software or products pose a vulnerability to your clients, their patients, and

A Pentesters Guide – Part 5 (Unmasking WAFs and Finding the Source)

August 1, 2020

In this article I am going to detail a non-exhaustive overview of bypassing WAFs by identifying a misconfigured underlying server. I will cover a few

A Pentesters Guide – Part 4 (Grabbing Hashes and Forging External Footholds)

July 24, 2019

If you’re a penetration tester, you’ll know the beauty of grabbing hashes and how easy at times it can be. Perhaps you already know all

Navigation

Company

Social

Social