From Phishing to Phish and Chips
As part of his Phishing blog series, Andrew Stanistreet discusses his new challenge and the surprising overlap he’s found with cyber security.
Penetration testing
Vulnerability and Penetration Testing Services
Vulnerability and penetration testing services are two types of cyber security assessments. They differ in breadth, depth, scope, and serve different
Is Your Threat and Vulnerability Management Process Up To Scratch?
Threat and vulnerability management involves identifying, analysing, prioritizing, and remediating weaknesses in an organization’s network. Ensuring that threat and vulnerability management
The Importance of External Penetration Testing
Cyber threats are growing in number and sophistication, with cybercrime damage expected to reach $10.5 Trillion by 2025. As such, there
What is Physical Penetration Testing?
It’s easy to think that cybersecurity is limited to the digital space. It’s right there in the name, if you
Penetration Testing vs Vulnerability Scanning: Understanding the Difference
For an enterprise, penetration testing and vulnerability scanning are both essential methods for protecting systems and networks from cyber attacks.
How to Prevent Cyber Attacks
In this digital age, both individuals and organizations face significant threats from cyber attacks. Cybercriminals are continually evolving their attacking strategies to
AWS Penetration Testing: Methodology and Guidelines
Penetration testing, or pen testing, is a crucial security exercise for organizations to identify vulnerabilities in their defense mechanism thereby
Automated Penetration Testing: Benefits and Limitations
Discover the essentials of automated penetration testing and its role in enhancing cyber security strategies with Rootshell Security. In light
Car Security Updates: Who’s Responsible?
Author: Paul Cronin, Co-Founder Introduction A good friend of mine recently told me of the horror of him trying to
Gold Medal Cybersecurity: Paris Olympics 2024
Introduction As global attention converges on high-profile events like the Paris 2024 Olympics, the importance of robust cybersecurity measures cannot
MITRE ATT&CK Framework: Aligned Assessments, Management and Reporting
Author: Shaun Peapell, VP of Global Threat Services, Rootshell Security Rootshell have developed a reporting capability aligned to ‘The MITRE
Elevating Cybersecurity: Rootshell Security Introduces MITRE ATT&CK Framework Integration
MITRE ATT&CK® Framework At Rootshell Security, we are continuously seeking ways to advance our cybersecurity tools and methodologies. We are
Voice Assistants: Navigating the Digital Soundscape Safely
Author: Paul Cronin, Co-Founder and Partner Voice recognition technology in assistants has transformed how we interact with our devices, making
Phishing: Slipping The Net
Author: Andrew Stanistreet, Security Consultant Managed Services Welcome to the second post in my phishing series, in the first I
Phishing: Inside The Attacker’s Tacklebox
Author: Andrew Stanistreet, Security Consultant Managed Services Flavours of Phishing In this first post of this blog series, I want
Vulnerability Data: Informed Decisions using AI
Author: Paul Cronin, Co-Founder of Rootshell As a penetration tester, I often found it frustrating that the reports I submitted
Strengthening Wi-Fi Networks: Addressing Security Concerns and Recommendations
Author: Shaun Peapell, VP of Global Threat Services As part of Rootshell’s comprehensive security testing strategies, Wi-Fi network security testing
Transforming Red Team Assessments: The Impact of AI
Author: Shaun Peapell, VP of Global Threat Services The cyber security world is an ever-evolving landscape, staying one step ahead
Safeguarding Against SMSishing Attacks: Best Practices for Protection
Author: Shaun Peapell, VP of Global Threat Services As a mature Red Team and Simulated Attack house, we often look
Web Application Security Testing Debunked
Debunking: Automated or Manual? Web applications are popular targets for threat actors; vulnerable applications can offer convenient entry points into
Kernel Developers Be Warned!
Not Reading The Documentation Leads To Invalid Patches Kernel programming and driver development are notoriously hard, the primary reason being
ntlm_theft: A Tool For File Based Forced ntlm Hash Disclosure
How to use .Net native tools to run custom binaries Jacob Wilkin | Senior Security Consultant | Rootshell Security Note:
Application Whitelisting Bypass Using .Net
How to use .Net native tools to run custom binaries Rafael Gil | Senior Penetration Tester | Rootshell Security Windows