PEN Consultants Logo
Don’t Be a Victim: Find your weaknesses before the criminals do. PEN Consultants can help!

Blog

2024-06-16

Sharpen Iron / Red Teaming

The book of Proverbs tells us that one person sharpens another just as iron sharpens iron. In the cybersecurity world, red teaming sharpens your blue team, ensuring they stay vigilant against cyber threats and are ready to respond effectively. Featured image is a derivative work from the following images: https://pixabay.com/illustrations/purchase-shopping-price-value-7307064/

2024-06-12

Q4 testing

June is the month to start planning for your Q4 testing. Or, better yet, increase your ROI by moving it to another quarter. Auditors are generally understanding of this. Don’t wait until Q4 to start planning for testing that must be completed by EOY! You might be able to get an automated scan done in […]

2024-06-07

Industries We Serve

We often get asked which industries we serve, but the truth today is cybersecurity affects everyone. Every industry needs help with testing their security controls, understanding best practices, and staying ahead of attackers. As it happens, we have extensive experience doing just that with nearly every industry, from #Legal, #Financial, #Religious, #IT, #Healthcare, #Engineering, #Education, […]

2024-06-04

Testing

Did you know God regularly tests the people he loves? It is a regular occurrence in the Bible from Genesis 22:1, Deuteronomy 8:2, Psalms 11:4-5 to James 1:2-3, Revelation 2:10, and Hebrews 11:17. Testing identifies weaknesses we can work on, strengths that we can show-off, and proves our commitment to persevere through adversity. Our security […]

2024-05-31

Monthly Mentoring

How do I get into cybersecurity? How do I pass this certification exam? How do I handle a coworker who is hostile to my beliefs? We talk about these and much more at our monthly mentoring sessions with PEN Consultants CEO, Robert Neel, as well as other team members. Interested in joining us? It is […]

2024-05-25

What is a Pentest?

People use the term “penetration test” all of the time without actually understanding what it means. Even in the security industry, there is often disagreement on what exactly a “penetration test” is and how it differs from a vulnerability scan, vulnerability assessment, red teaming, etc. So, let’s clear up some of the confusion. This is […]

2024-05-22

Vulnerability Disclosure Policy

“Whoever brings blessing will be enriched, and one who waters will himself be watered.” (Proverbs 11:25). And yet… sometimes thirsty people just don’t want to drink. That is what it can feel like as a security researcher when you find a security vulnerability but can’t find a way to contact the company to ethically disclose […]

2024-05-19

Automated Pentests

ChatGPT and the growth of impressive AI tools has given rise to a new concept – automated penetration tests. It sounds cool and marketing SEO loves it. But, the truth is that an automated “penetration test” is really just a more advanced vulnerability scan. Can it be valuable? Certainly! In fact, PEN Consultants recommends performing […]

2024-05-16

Price vs Cost

There is a HUGE difference between a pentest’s price and a pentest’s cost. You can easily find “pentests” online for a low price – sometimes as little as $2000. But, those cheap “pentests” often come with a high cost. The methodology of those cheap “pentests” is shoddy and often misses entire classes of vulnerabilities. Those […]

2024-05-13

Ongoing Testing

Is there a book you can read over and over again? For us, it is the Bible. Every time we re-read a section, we find new insights, lessons, and values for our lives. In its own way, security testing is very similar – every time we test, we often find new issues and vulnerabilities. This […]

1 2 3 9
magnifiercrosschevron-down