Cyber Security Blog from turingpoint

Blogposts about cyber security in general, pentest, cloud security and red teaming from our team.

Latest blogposts

Cyber Security Blog from turingpoint

Blogposts about cyber security in general, pentest, cloud security and red teaming from our team.

Web/API Penetration Test32

Penetration Test62

Mobile App Penetration Test29

Infrastructure Penetration Test29

Cloud Security21

Red Teaming19

Adversary Simulations18

Static Code Analysis1

Blockchain1

Incident Response1

Penetration Test

Effort Estimation of Penetration Tests Using the Timeboxing Method

Timeboxing is a central concept of agile software development and is being used in more and more areas. Basically, a timebox refers to the time you have to complete a task.

Jan Kahmen

September 12, 20228 min reading time

Penetration Test

Why an Automated Scan is not a Penetration Test

Vulnerability scans are often passed off as penetration tests. However, there is a huge difference between these packages.

Fabian Gold

April 8, 20226 min reading time

Penetration Test

What is Cross-Site-Request-Forgery?

Cross-site request forgery (CSRF/XSRF) is an attack that forces an end user to perform an unwanted action in a web application.

Fabian Gold

February 16, 20228 min reading time

Penetration Test

Time-based User Enumeration

Since the classical enumeration of user names is often no longer possible, a time-based approach must be taken to get this information.

Fabian Gold

February 11, 20226 min reading time

without_safety_concept_no_safety_application_5c36376a9f

Penetration Test

No Secure Application without a Security Concept

Today, IT security is more important than ever. After all, data breakdowns, system failures and even hacker attacks put a strain on the IT infrastructure.

Jan Kahmen

February 4, 20229 min reading time