NEW FEATURE
Cobalt PtaaS + DAST combines manual pentests and automated scanning for comprehensive applications security.
NEW FEATURE
Cobalt PtaaS + DAST combines manual pentests and automated scanning for comprehensive applications security.

Busra Demir

Busra is a former Lead Cobalt Core Pentester with a passion for offensive security research, capture the flag exercises, and certifications. She has currently completed her OSCE, OSCP, and OSWP certifications.

A Pentester’s Guide to HTTP Request Smuggling

What is HTTP Request Smuggling? HTTP request smuggling is an attack technique that is conducted by interfering with the...
Oct 15, 2020
Est Read Time: 9 min

A Pentester’s Guide to Server Side Request Forgery (SSRF)

What is SSRF? In a Server-Side Request Forgery (SSRF) attack, the attacker can abuse functionality on the server to...
Oct 1, 2020
Est Read Time: 4 min

A Pentester’s Guide to SQL Injection (SQLi)

This blog will be one of many created alongside our Hacking How-To series, an educational video series around everyday...
Sep 17, 2020
Est Read Time: 5 min

Anatomy of Authentication Tests

Introduction Authentication, as OWASP states, is the process of verifying that an individual, entity, or website is who...
Mar 5, 2020
Est Read Time: 4 min

The Anatomy of Deserialization Attacks

What is Deserialization? Serialization is the process of turning some object into a data format that can be restored...
Jan 23, 2020
Est Read Time: 7 min

Women in Cyber BNP Paribas Panel

I had the honor to speak at a panel on Women in Cyber: Leveraging Diversity in Risk Management and Cyber Security at...
Oct 18, 2019
Est Read Time: 2 min
    1 2