by Slade Griffin | Mar 10, 2022 | Uncategorized
False positives can be difficult to disprove and even harder to understand. They stem from an automated product, like a vulnerability scanner, doing its best to determine whether a specific condition exists or not. Unfortunately, a lot of people end up trying to...
by Slade Griffin | Dec 7, 2021 | Uncategorized
Continuing with our #ExpectMore series, I want to explore some commonly used terms and what they might look like during a penetration test in your environment. “Visibility”, “Actionable Metrics”, these terms are frequently used in the cybersecurity world by vendors...
by Slade Griffin | Mar 3, 2021 | Uncategorized
In response to the recent Microsoft Exchange exploits, and the desire to funnel relevant information into a single source, Contextual Security Solutions has consolidated some information regarding the recent 0-day exploitation. If you are running MS-Exchange (2013,...
by Slade Griffin | Dec 14, 2020 | Uncategorized
Over the past few days there have been multiple high-level breaches to platforms like Microsoft Teams, Solarwinds Orion, and companies like FireEye and some government agencies. Going into the holidays, this may be a cause for anxiety for those of you who are charged...
by Slade Griffin | Oct 23, 2020 | cybersecurity, penetration testing, whitelisting
Recently I have been asked by clients why we request that our scans be whitelisted when we are performing external security assessments. Many people believe that a blocked scan is the same as blocking a vulnerability which is present on a host. This could not be...
Recent Comments