Explore the minds of The NetSPI Agents

Advance your proactive security knowledge by learning from some of the brightest people in cybersecurity. Our executive blog gives perspective on industry trends, while Hack Responsibly dives deep into the latest CVEs and tactical approaches our team takes. Take your pick!

Security Industry Trends

CrowdStrike Global IT Outage: Time to Reflect on the Process for Security Vendor Updates? 

Read The NetSPI Agent’s take on the impact and exploitability of the regreSSHion OpenSSH vulnerability that could lead to unauthenticated RCE.

Learn More
AI/ML Pentesting

Exploiting a Generative AI Chatbot – Prompt Injection to Remote Code Execution (RCE)

Discover how NetSPI exploits an externally exposed Generative AI Chatbot to compromise the hosting server.

Learn More
Adversarial Machine Learning

How Threat Actors Attack AI – and How to Stop Them

Learn about common AI attack paths that threat actors use and how you can bolster your own AI security with AI/ML penetration testing. 

Learn More
Personnel Development

17 Resources You Can’t Miss When Starting Your Career in Application Security 

Entering a career in application security? This guide highlights reputable resources to help aspiring defensive AppSec engineers improve their skills.

Learn More
Vulnerability Research

Impact Analysis: regreSSHion OpenSSH Vulnerability (CVE-2024-6387) 

Read The NetSPI Agent’s take on the impact and exploitability of the regreSSHion OpenSSH vulnerability that could lead to unauthenticated RCE.

Learn More
Web Application Pentesting

Prototype Pollution: A Deep-Dive

Learn about Prototype Pollution – what it is, why it exists, and real examples of how it can be exploited.

Learn More
Mainframe Penetration Testing

Mission for Mainframe | Part 1: Relevant Today

Learn from Michelle Eggers why mainframes are so important as the backbone that keeps our financial systems and other critical industries running.

Learn More
NetSPI Updates

Inside CAASM: Q&A with NetSPI Leadership

Hear from NetSPI leaders about the acquisition of Hubble, a leader in Cyber Asset Attack Surface Management (CAASM).

Learn More
Compliance

Q&A with Giles Inkson: A Guide to Digital Operational Resilience Act (DORA)

What is Digital Operational Resilience Act (DORA)? Will it affect your business? NetSPI is your guide to the latest updates for financial services.

Learn More
NetSPI Updates

Creating Moments of Magic across the Globe at NetSPI’s 2024 Employee Kickoff 

Relive NetSPI’s 2024 Employee Kickoff that ignited inspiration for proactive security and a shared vision for the evolution of The NetSPI Platform.

Learn More
Adversary Simulation

From linen to silk – Using Microsoft Service Fabric to elevate privileges 

The NetSPI Agents discovered a local privilege escalation path in Microsoft Service Fabric Runtime. Learn how the vulnerability was discovered and exploited.

Learn More
Proactive Security

Proactive Security 101: Discover, Prioritize, Remediate 

What is proactive security? And what are the tangible steps you can take to implement proactive security measures? NetSPI is here to be your guide.

Learn More