Community

Content

All
  • All
  • Attack Surface Management
  • Incident Response
  • News
  • Penetration Testing
  • River Security

Continuous Penetration Testing: Why Fresh Eyes Find Fresh Bugs

By Chris Dale |
[Editor’s note: I wrote this short blog post to illustrate the advantages of Continuous Penetration Testing. In this case, a tester discovered a vulnerability triggered by a new event in...
Read More about Continuous Penetration Testing: Why Fresh Eyes Find Fresh Bugs

Welcoming Tomasz Czyz – Senior Penetration Tester  

By Magnus Holst |
We are pleased to announce that Tomasz Czyz is joining River Security as a Senior Penetration Tester. Tomasz joins us from Atea, where he has worked as a Senior Security...
Read More about Welcoming Tomasz Czyz – Senior Penetration Tester  

SSL/TLS Management: Reducing Risks and Gaining Visibility

By Chris Dale |
Transport Layer Security (TLS) and its predecessor SSL remain cornerstones of modern internet security. They protect confidentiality, integrity, and authentication for data in transit. But while TLS is everywhere, managing...
Read More about SSL/TLS Management: Reducing Risks and Gaining Visibility

Turning Cloudflare Into an SSRF Engine, Reaching What You Were Never Meant to See

By Raymond Strandheim |
[Editor note: Raymond identified a potential SSRF issue within Cloudflare infrastructure. While initially difficult to exploit due to limitations and unexpected behavior, further investigation confirmed real impact. By leveraging Cloudflare’s...
Read More about Turning Cloudflare Into an SSRF Engine, Reaching What You Were Never Meant to See

Welcoming Martin Nyberg – Penetration Tester

By Magnus Holst |
We’re excited to welcome Martin Nyberg to River Security, who joins us as a Penetration Tester in our Offensive Security Operations Center (OSOC). Martin comes from a strong technical background...
Read More about Welcoming Martin Nyberg – Penetration Tester

Welcoming Valdemar Andersen – Threat Intelligence Manager

By Magnus Holst |
We’re excited to welcome Valdemar Andersen to River Security, who joins us today as our new Threat Intelligence Manager. Valdemar comes to us from the role of Senior Cybersecurity Consultant...
Read More about Welcoming Valdemar Andersen – Threat Intelligence Manager

Like stealing (Cisco) ISE-cream from a kid – Weaponizing a CVE

By Raymond Strandheim |
[Editors Note: Raymond Strandheim is a principal pentester, and I asked him to share with us how he managed to weaponize a new vulnerability from Cisco into a working exploit...
Read More about Like stealing (Cisco) ISE-cream from a kid – Weaponizing a CVE

From Norway to Sweden – with Europe in sight

By Magnus Holst |
Jens Dahlkvist (Country Manager Sweden, left) and Andreas Claesson (Principal Penetration Tester, right) With local leadership and senior expertise, we’re ready to meet the Swedish market River Security continues its...
Read More about From Norway to Sweden – with Europe in sight

Sikkerhetsfestivalen 2025: Reflections and the Road Ahead for Cybersecurity 

By Magnus Holst |
Introduction  What a festival. Sikkerhetsfestivalen 2025 – my first, and definitely not my last. The organizers and the city of Lillehammer brought together some of the sharpest companies and minds...
Read More about Sikkerhetsfestivalen 2025: Reflections and the Road Ahead for Cybersecurity 

Welcoming Andreas Claesson – Principal Penetration Tester

By Magnus Holst |
We’re excited to welcome Andreas Claesson as our new Principal Penetration Tester at River Security. Andreas joined us on October 1st, bringing with him years of experience in offensive security...
Read More about Welcoming Andreas Claesson – Principal Penetration Tester