Awareness Training @ mgm sp
One of the most important fundamentals for practiced security is the creation of awareness for threats in information security. In our IT Security Awareness Training, we demonstrate how attackers act, what motivates them and how easy it is to do damage.
Our colleague Dr. Benjamin Kellermann will show you a small insight into such a training (in German):
The design of this training is also suitable for holding an information booth, e.g. as part of an in-house awareness event. A consultant demonstrates various attacks to interested employees and answers their questions individually.
We also offer special modules on “Web Application Security” and “Mobile Security“. Our compact awareness training is ideally suited to find the right approach to the respective topics.
Our trainers have many years of practical experience and can illustrate realistic threats with many practice-oriented examples.
We will be happy to advise you which of our awareness modules best suits your needs!
New Can I Trust Test Case: Browser returns secret out of pre-cached response in a CORS-Request
#1 – New Can I Trust Test Case – Browser returns secret out of pre-cached response in a CORS-Request
Update – WordPress Author Security
Update: Our WordPress Author Security Plugin is now available in the WordPress Plugin Store.
WordPress Author Security
How can you actively prevent usernames from being enumerated on WordPress author pages?
Pentest FAQ – #18 and #19 – How are vulnerabilities found evaluated? And what is the CVSS?
In our Big Application Security Penetration Test FAQ for clients we answer everything you should know before, during and after the commissioning of an Application Security Penetration Test.
In focus today: Questions #18 and #19 – How are vulnerabilities found evaluated? And what is the CVSS?
Attack Afternoon – CSRF Countermeasures #2
CSRF Countermeasures #2: Another way to protect against CSRF – stateless – is the Double Submit Cookie method.