Skip to content

Category Archives: Social Engineering Attacks

How do I start security testing?

There are many testers and hacking aspirants who write to me seeking guidance to learn security testing / hacking. I prepared a list to send for everyone. Then I thought of publishing the same on my blog so that I just give out my blog post URL and then can see it here. Even it […]

Share/Bookmark

An awesome test for testers; take the challenge now.

I am not sure if this kind of contest has been launched in the past. Without thinking about it, let me welcome you all testers to this contest. The idea behind this contest is to know the thoughts of tester in various contexts which you can see below.   There are 18 questions / contexts […]

No security testing? Then be ready for nightmare

Most of the applications that are released to the world are not tested for security quality criteria. However; most of them with confidence say; “Our privacy policy safeguards you against hackers and attackers” but, it is a fake policy rather than privacy policy. I have seen web applications that are used by large set of […]

I disagree with Jakob Nielsen’s STOP password masking article

While I refer to http://useit.com/ for usability related articles and I do recommend to many testers as well. However, I filter out which doesn’t make sense to me rather than following something blindly. Darren McMillan, a tester and my friend posted a tweet with the following URL http://www.useit.com/alertbox/passwords.html and after reading it, I felt most […]

Social Engineering Attacks – Helping you from NOT being victimized (Part I)

You might have got calls many times saying, “Sir, we are calling from ‘X’ bank. This is a call to update our records if any changes. Can you please verify your Date of Birth, Your Birth Location” – The questions might differ. And you answer all the questions. My question to you is, do you […]