Introducing BLACKBIRD Burpsuite Integration Extension
It has never been easier before for pentesters to pentest web apps
It has never been easier before for pentesters to pentest web apps
This article is intended for penetration testers who wish to discover more security vulnerabilities in web applications during their next pentesting engagement.
A web application penetration testing suite is a collection of manual, semi-automated and fully automated tools designed to identify and exploit web security vulnerabilities in web applications and various other web services (like APIs). These toolkits are used by security professionals, such as penetration testers, bug bounty hunters and ethical
If you are a penetration tester, you will definitely have come across a scenario where you had to manually analyze a JavaScript file before. We also know that it can be a tedious task, especially when it's minified and not readable for humans. We have developed a simple
Penetration testers can save a lot of their valuable time and even find more security vulnerabilities with little to no extra effort by just using the right tool! In this article, we will dive deep into BLACKBIRD Web App Pentesting Suite—our cloud-based web application pentesting suite for penetration testers.
Out-of-band web security vulnerabilities are generally harder to spot, especially in modern complex web applications. Most out-of-band security vulnerabilities even come with an elevated impact (such as SSRF) as they can provide unauthorized users with access to internal-only resources. In this article, we will delve into what OOB web security
Penetration testers can save a lot of their valuable time with the right tool set. Besides that, pentesters can also improve their quality of work by just working with smarter tools. Whether you're a seasoned pentester or just starting out, these tools offer a comprehensive range of features
One of the most effective ways to safeguard web applications is through the use of web vulnerability scanners. These tools are designed to identify and mitigate security flaws before they can be exploited by malicious actors. In this article, we will discuss the top 7 effective web vulnerability scanners in
Today, we are excited to share some big news with you – we're changing our company name. NOVA SECURITY is now BLACKBIRD Technologies. Over the past few years, our company has significantly evolved. We've expanded our services, grown our team, and broadened our horizons. Our current name
Exploring Hidden Attack Surfaces is a new blog post series curated by BLACKBIRD Technologies for the community to help you on your way to discover any attack surfaces that most current tools are not capable of. Part 2 is dedicated to performing better content discovery so that you can have
Targeted bruteforcing in content discovery is a lesser-known and more sophisticated technique of bruteforcing. It is also a more effective approach and it likely also yields more accurate results. In content discovery, targeted bruteforcing consists of 2 separate steps. The first step is to identify the technologies used by the
If you are an experience penetration tester, bug bounty hunter or have experience in web security, you probably have heard of DNS or Subdomain bruteforcing before. It is a technique often used in the reconnaissance phase of your testing to further help map out your entire attack surface. What is