This project demonstrates the use of Metasploit to perform practical security testing in a controlled lab environment. It covers identifying vulnerable services, selecting appropriate exploit modules, and validating system weaknesses through controlled exploitation to understand potential security impacts.
Selected:
This project demonstrates the use of Metasploit to perform practical security testing in a controlled lab environment. It covers identifying vulnerable services, selecting appropriate exploit modules, and validating system weaknesses through controlled exploitation to understand potential security impacts.
This project demonstrates the setup and configuration of Rapid7 InsightVM for enterprise vulnerability scanning. It covers platform deployment, asset discovery, scan configuration, and credential validation to enable effective vulnerability identification across systems and infrastructure.
Automating server updates with Ansible simplifies multi-server maintenance. This post covers my learning process, setup, and a practical playbook.
A deep dive into OWASP Juice Shop, exploring key vulnerabilities from the OWASP Top 10, their impact, and best practices for securing web applications.
This security assessment of robertquintero.me identified Open Redirect and Reverse Tabnabbing vulnerabilities, both confirmed as high-risk threats. These flaws allow attackers to manipulate user navigation, enabling phishing attacks and potential session hijacking. Immediate remediation is advised, including URL validation, rel="noopener noreferrer" attributes, and enforcing security headers to mitigate risks.
Discover the power of OpenVAS, a free and open-source vulnerability scanner that helps you identify security weaknesses in your network and applications. This blog post provides a comprehensive guide to getting started with OpenVAS, from installation and configuration to running your first scan and interpreting the results