Blog
Is Metadata Helping Your Attackers?
Publishing documents and sharing media on your website seems harmless at the surface level but lurking underneath could be the crux of your security program. Metadata stored on documents could be leaking information and aiding adversaries in attacking your...
Top 5 Ways COVID Has Changed Security Assessments
There is no doubt that COVID has changed how the world conducts business, so it’s no surprise that security assessments have as well. The increase in remote employees and the need for availability of applications and resources from afar has disrupted organizational...
So You Want to Be a Hacker: 2021 Edition
Video Version: https://www.youtube.com/watch?v=mdsChhW056A Introduction Recently, I posted a 36-part Twitter thread (https://twitter.com/thecybermentor/status/1343471814132031488) on how to become an ethical hacker in 2021. Given that it was well received, I thought...
Pentest Tales #001: You Spent How Much on Security?
Pentest Tales #001: You Spent How Much on security? Welcome to the first edition of Pentest Tales, a blog series that walks through real-world pentests we've performed in the past. The purpose of this blog is not just to share the "owning" of a domain, but to provide...
Buffer Overflows Made Easy
For most people breaking into cyber security, buffer overflows can be hard for someone to wrap their mind around. My goal is that by the end of this tutorial, the average reader will have a clearer understanding and less fear of buffer overflows.
Differences Between a Vulnerability Scan and a Penetration Test
Two of the most common questions clients ask are: What’s the difference between a vulnerability scan and penetration test and what option is best for my company? The differences between a vulnerability scan and penetration test are often confused. Let’s take a look at the key differences between the two options and paint a clearer picture on what option you should choose for your company.
See How We Can Secure Your Assets
Let’s talk about how TCM Security can solve your cybersecurity needs. Give us a call, send us an e-mail, or fill out the contact form below to get started.