I'm so glad it's helpful! I had to get some ducks in a row with the methodology and framework, but there shouldn't be any major gaps in the future!

No problem! I do these with my team, all the time, so they are easy to make. Hope it helps!!

Haha, thank you so much for the kind words but I promise that is not true. I actually run a Blue Team and I'm a very "Middle of the road" penetration tester, especially outside of web-based vulns. But, what I do have is a good wealth of knowledge in both Red Teaming and Blue Teaming, as well as a *very* strong foundational knowledge of the technology itself. I really think that is the key, you can't have one without the other, and you need to start with a strong understanding of the technology.

Ofcourse Sir , you can't have one without the other@@rs0n_live

I'll do my best, haha! Obviously anything under creative testing becomes very contextual to the application and specific use-case, but there are certainly a ton of general rules we can go over!

Do you mean for finding vulnerabilities in source code, similar to the OSWE methodology or doing CVE research?

@@rs0n_live finding vulnerabilities in source code is something I’m trying to get better at so if you have any insight on that would be appreciated. I don’t have much of a developer background I primarily do black box testing

I've gotten that request a few times. That will be my next Questions Exercise question I do!

Sure, that one should be easy. I think I could do one for all database injections since the should have the same answers... It's on the list! (and I'll include a practical example 😉)

Thanks waiting for your video @@rs0n_live

Sure, I can definitely do that! Thank you for the feedback 🙏

looking forward for your video cheers!!@@rs0n_live

Not an official one yet. I'm playing around with the idea. Moderating would be tough, I'm already stretched so thin.

@@rs0n_live and Next Twitch or youtube stream on ?