Sitemap – PlexTrac

AI

• Friends Friday Recap: How AI Is Reshaping Offensive Security And Why Humans Still Matter
• Threat Intelligence Unfiltered
• Quantify the Impact of Proactive Security on Risk
• The Gold Standard of Continuous Pentesting
• Demonstrating the Business Value of Your Security Program
• AI and the Future of Pentest Reporting and Vulnerability Management
• Going on the Offensive
• Unleash the Power of AI to Speed Pentest Reporting
• The Future of Manual Security Testing
• Introducing Plex AI: Your Sidekick for Even Faster Pentest Reporting
• The New Artificial Intelligence

Collaboration

• Leveraging Cybersecurity to Build Trust in the Sales Cycle
• Black Hat USA 2024: The Year of AI & CTEM
• Cyber Is a Team Sport
• Manage Your Cybersecurity Testing with PlexTrac Runbooks
• Collaborate to Remediate: Jira Integration
• Collaboration in Cybersecurity
• PlexTrac New Feature Roundup: Winter 2022
• Purple Teaming as a Paradigm
• The Five W’s of Tabletop Exercises

Continuous Assessment

• The Automation Imperative: Pentest Delivery Must Catch Up
• Introducing PlexTrac for CTEM: Proactively Manage Exposure Risk
• Embracing Continuous Threat Exposure Management (CTEM)
• Facing the Reality of Risk Prioritization
• Ready to Better Harness Tenable Data to Drive More Secure Outcomes?
• Prioritize Risk With Our New Contextual Scoring Engine
• So You Delivered Your Report, Now What?
• Continuous Assessment as a Mindset
• The Cybersecurity Report: A Case for a Dynamic Deliverable
• Redefining Purple Teaming in Cybersecurity
• What Is Purple Teaming? — Cybersecurity

Cybersecurity 101

• The Great Exposure Management Shift: From Point-in-Time Scans to Continuous Resilience
• How Do I Pentest My LLM?
• Vulnerability Assessment vs Penetration Testing: Understanding the Key Differences
• The Most Common Social Engineering Tactics in 2023 
• Cybersecurity Doesn’t Have to Be So Scary
• Cybersecurity Salaries by State
• What Is Red Teaming? 
• Penetration Testing vs. Vulnerability Scanning
• Understanding the Top Cybersecurity Frameworks
• Trends in Cybersecurity: 2022 Year in Review
• Pentesting Frequency
• Giving Thanks in 2022
• Cybersecurity Awareness Month 2022 
• IDS and IPS Systems: Key Tools in the Network Security Kit
• 12 Examples of Cybersecurity Jobs
• Cybersecurity 2021 Year in Review
• PlexTrac for Red Teamers
• Why Social Engineering Is So Effective
• 5 Ways to Identify Malicious Phishing Emails
• What Are Information Systems? — Defined and Explained in 2023
• What Is A Network Security Assessment?
• Physical Penetration Testing

Exposure Assessment

• PlexTrac Named in the Gartner® Magic Quadrant™ for Exposure Assessment Platforms
• Qilin Ransomware Surge: Lessons Learned and the PlexTrac Advantage
• Bridging the Gap Between Pentests and Vulnerability Management

Integrations and Partnerships

• PlexTrac Announces Partnership with Cobalt, the Leading Pentest as a Service Provider

Penetration Testing

• Outsourced vs Internal Pentesting: Why the Real Decision Is About Capability
• 5 Signs Your Vulnerability Management Program Isn’t Ready for Continuous Threat Exposure Management (CTEM)
• Master Pentest Reporting: Join the 2025–2026 Penetration Testing Report Writing Bootcamp
• 5 Steps to Speed Remediation and Protect Your Organization
• What FedRAMP’s New Vulnerability Management Standard Means
• Go-To Guide: Creating an Optimal Pentesting Report Template
• Threat and Dark Web Intel: Maximize Threat Intelligence
• Offensive Security Tips and Trends for 2024 
• Brief: Don't Trade Quality for Speed in Your Pentest Report
• Hack More. Report Less.
• Get Better Penetration Test Reports — Faster
• Your Report is NOT Your Secret Sauce
• How To Become A Penetration Tester
• 30+ of the Most Popular Penetration Testing Tools in 2023
• What is Penetration Testing? Expert Intro to Pentesting in 2023
• 5 Tips for Writing Better Cybersecurity Reports
• Hack to the Future
• The Primary Purpose of Penetration Testing
• Remediation and Final Testing Phases: Show Progress, Enhance Security Posture
• Demonstrate Your Pentest’s Value
• Post Exploitation Phase: Attacking Beyond the Perimeter
• Detection and Exploitation Phases: This Is Where the Fun Begins!
• Discovery and Enumeration Pentest Phases: A Foundation for Success
• Introducing ALL the Phases of Penetration Testing
• Retain Top Cybersecurity Talent with Better Pentest Reporting
• Customize a Database of Reusable Writeups with PlexTrac
• Conquer Q4 as a Security Consultant

PlexTrac Features

• Unlocking Continuous Threat Exposure Management
• Speed Pentest Reports – AI Workflow Optimization | PlexTrac (example)
• Simplify Pentest Reporting and Improve Time to Value With the Industry’s Largest Findings Repository 
• See the Latest PlexTrac Capabilities at Hacker Summer Camp 2023
• Platform 2022 Year in Review
• The Top 5 Collaboration Features in PlexTrac
• 5 Efficiency-Driving Features in PlexTrac
• Built for Your Workflow in Your Reporting Platform
• Customer Success Is the Secret to Success
• Introducing CVSS v3.1, CVE, and CWE Improvements in PlexTrac
• April 2022 Feature Release: Maximizing Reusable Content
• Cybernews | Dan DeCloss, PlexTrac: “teams without consistent communication are more prone to a serious breach”
• Streamline Assessments, Evidence Collection, and Reporting with PlexTrac
• Import and Manipulate Results of Network and App Scanning Tools with PlexTrac
• PlexTrac New Feature Roundup: Summer 2021

Program Management

• Exploring PlexTrac Priorities + Metrics
• Defending Against AI Attacks 
• Prioritize and Reduce Risk Faster
• Leveraging AI for Offensive Security
• Top AI Threats to Your Cybersecurity in 2024
• Cybersecurity Maturity Model Certification Program Is Here to Stay
• 5 Need-to-Know Cybersecurity Trends That Will Impact Your Offensive Security Strategy for 2024 
• Offensive Security Maturity - Triumph with Technology
• Measuring Your Offensive Security Maturity - Perfect Your Processes
• Measuring Your Offensive Security Maturity: Prioritize Your People 
• Measuring Your Offensive Security Maturity
• The Offensive Security Maturity Model: Get Ahead of Threats
• Five Steps to Maximizing Talent in Cybersecurity
• Hiring Top Cybersecurity Talent
• Asset Management is the Key to Surviving the Internet
• To Build or Buy a Cybersecurity Solution? That is the Question

Purple Teaming

• Actionable Purple Teaming
• The Benefits of Purple Teaming

Security Reporting

• Top 10 Things to Look for When Picking a Pentest Management and Reporting Automation Tool
• Core Networks Information Security Doubles Service Capacity With PlexTrac
• Speed vs. Quality in Pentest Reporting
• Boost Revenue with Pentest Reporting Automation
• Make a Winning Business Value Case for Pentest Reporting Automation at Your MSSP
• Pentest Reporting Automation: A Win-Win Proposition for MSSPs
• Deliver More Value with Innovative Cybersecurity Services
• Maximizing Pentest Reporting Efficiency
• The Capability Maturity Model (CMM)
• CMMC Part 2: CMMC vs. NIST 800-171

Talent Shortage

• Is a Role at a Security Startup Right for You?
• How to Get into the Cybersecurity Industry

Thought Leadership

• From Friends Friday to Black Hat Europe: What Security Teams Should Focus on Next
• Cisco Vulnerability Management (formerly known as Kenna) Is Going Away: PlexTrac Can Help Teams Move Forward
• Spooky Supply Chains & Researcher Reality: A Conversation with Jonathan Leitschuh
• Friends Friday Recap: Building a Continuous Purple Teaming Program with Paul Nieto III
• Salt Typhoon Exposed: A Deep Dive Into a State-Sponsored Cyber Threat
• 7 Common Pitfalls of Penetration Testing Reports
• The Need for Continuous Security Testing
• Security Priorities and Strategies for Private and Public Companies
• Securing Products, Embedded Devices, and the IoT
• How to Empower Adversary Emulation
• The Good, the Bad, and the Ugly of Starting a Cybersecurity Business

Threat Intelligence

• Implementing a Threat Intelligence Program

Uncategorized

• The Operational Gap Between Pentest Reports and Remediation
• The Most Popular Penetration Testing Tools in 2026
• The Operational Gap Between Pentest Reports and Remediation
• Cheers to 2025: PlexTrac Year In Review
• Automated Pentest Delivery Enables Unified Vulnerability Management
• How Cybersecurity Teams Can Face DORA with PlexTrac
• CTEM Vendors that play nice together
• The CVE Program Regains Funding: A Critical Juncture for Global Cybersecurity
• What the CVE Funding Scare Exposed About the State of Vulnerability Management
• Risk Based Prioritization - Clear Actionable Insights
• Streamline Pentest Reporting Without Code
• Enhance Client Value with Innovative Cybersecurity Services
• Going Beyond the Security Report
• Hack the 10 Steps of the Pentesting Routine
• Cybersecurity Insurance: Three Considerations for the New Year
• Leverage PlexTrac for Your Log4j Response
• PlexTrac New Feature Roundup: Fall 2021
• 10 Cybersecurity Insurance Trends
• PlexTrac for Purple Teamers
• Continuous Purple Teaming Assessments
• PlexTrac for Blue Teamers
• Stakeholder Communication
• PlexTrac’s Season of Thankfulness
• Blue Team Remediation
• Cybersecurity Industry Developments to be Thankful For in 2021
• Cybersecurity Insurance: Get Covered, Know and Maintain Your Posture
• Red Team Data Aggregation
• PlexTrac for Cybersecurity Teams
• Tackling the Cybersecurity Talent Shortage
• Survey Says: Improve Your Security Posture by Purple Teaming
• Cybersecurity Insurance
• National
• PlexTrac for Governance, Risk, and Compliance (GRC) Teams
• Export to Custom Report Templates with PlexTrac
• Security Service Providers Defined
• There’s a PlexTrac for Every Security Team
• What is Adversary Emulation? (Adversary Simulation)
• PlexTrac Integration with SCYTHE
• The Growth of Ransomware
• MTTD and MTTR in Cybersecurity
• Analytics and Big Data in Cybersecurity
• What are Supply Chain Attacks in Cybersecurity?
• The SolarWinds Breach Shows the Importance of Cybersecurity
• Black, White, and Gray Hats in Cybersecurity
• Give Your Security Team the Gift of PlexTrac
• Connect All Your Tools with Scanner and Workflow Integrations
• The Characteristics and Skills You Need as a Cybersecurity Pro
• Effectively Manage Your Assets to Protect the Crown Jewels
• Reasons to Be Thankful about Your Cybersecurity Program in 2020
• 5 Cybersecurity Industry Developments to be Thankful For in 2020
• Create Visualizations and Track Attestation with Analytics that Work for You
• Cybersecurity for Gamers: How to Protect Your Video Games
• The History of Cybersecurity in Video Games
• Custom Templates: Deliver Security Reports with Your Look and Feel
• Cybersecurity in the Education Sector
• Report & Remediate Findings without the Headache
• Voting Isn’t Red or Blue… It’s Purple
• The Future of Connected Devices — NCSAM Week 4
• Secure Your Connected Medical Device, Protect Your Health
• Securing Internet-Connected Devices in Healthcare — NCSAM Week 3
• The Foundation of Governance, Risk, and Compliance (GRC)
• Securing Devices at Home and Work — NCSAM Week 2
• The Three Pillars of Cybersecurity
• If You Can Connect It, Protect It — NCSAM Week 1
• Are You Aware of Your Cybersecurity? — NCSAM
• Achieve Consistency in Your Writeups without Copy & Paste — PlexTrac Can Do That
• Identify and Manage Risks with Custom Assessments
• The Pain of Managing, Integrating, and Reporting Out Big Data — Solved by Runbooks!
• The Pain of Facilitating Transparent Purple Team Engagements — Solved by Runbooks!
• Standardization for Your Security Team
• The Pain of Individual Approaches and Non-standardized Processes for Cybersecurity Remediation — Solved by Runbooks!
• CISOs’ Top Cybersecurity Priorities in a Year Gone Crazy
• The Most Notorious Hacking Groups of All Time
• The Information Security Lifecycle
• The Twitter Hack Proves that Nobody is Safe from a Breach
• What is Information Privacy? (Data Privacy)
• Implementing a Continuous Assessment Model in Your Cybersecurity Program
• Are Cybersecurity Certifications Worth the Investment? A Certification Crash Course
• What Education Theory Can Teach Cybersecurity Professionals
• A Cybersecurity Incident Management Crash Course
• Closing the Gap: Building a Robust Cybersecurity Team and Program for the Current Crisis and Beyond
• What is Ransomware?
• The Cybersecurity Maturity Model (CMMC): Part 3 — So You Want to Be A CMMC Assessor?
• Critical Infrastructure and Cybersecurity in the U.S.
• The NIST Privacy Framework: Defined and Outlined
• The Cybersecurity Maturity Model (CMMC): Part 1 – Why Do We Need Another Framework?
• Key Takeaways from Verizon’s 2020 Data Breach Investigations Report (DBIR)
• Election Security Isn’t Red or Blue… It’s Purple
• Three Solutions to Common Red Teaming Problems
• How to Maximize Your Security on Zoom
• MITRE ATT&CK® for Purple Teaming
• MITRE ATT&CK Framework: Defined and Outlined
• Cybersecurity Trends in a COVID-19 Environment
• Keeping Your Focus in a Time of Insecurity
• How to Maintain Cybersecurity When Working From Home
• Tips to Work Efficiently From Home
• Challenges with the Cybersecurity Status Quo
• How to Organize Your Purple Teams
• The 5 Activities of a Purple Teaming Engagement
• The Cybersecurity Status Quo: Red vs. Blue Teams
• Top 6 Qualifications Employers in Cybersecurity Look For
• 5 Ways That Businesses Prioritize Cybersecurity Vulnerabilities - PlexTrac
• Tips and Tactics to Defend Against Email Cyber Attacks
• What are Web Shells?
• Top 4 Point-of-Sale (POS) Malware Families
• The CVSS v3 Vulnerability Scoring System
• What is Threat Intelligence?
• An Introduction To Vendor Risk Management
• What Is A Cyber Security Risk Assessment?
• PCI Penetration Testing
• 30 Things You Need to Know About Data Breaches
• IoT/Mobile Penetration Testing
• Application Penetration Testing
• Penetration Test Reporting: Document vs Client Portal
• What is a Penetration Test?
• Prevent Unauthorized Software from Contaminating Company Networks
• How to Contain, Identify, and Minimize a Targeted Attack
• Top 3 Password Management Tools
• Are Password Vaults Secure?
• What is a Password Vault?
• Why Does Password Strength and Complexity Matter?
• How to Prevent a Facebook Hack
• How to Recover from a Facebook Hack
• Change Your DNS Resolver
• No Expectation of Privacy Clause
• Guide for Data Classification
• Top 6 Information System Violations
• Logistics in Information Security
• Why Risk Registers are Critical
• CIS 20 Controls
• Effects-Based Cybersecurity
• CIS Control 1: Inventory and Control of Hardware Assets

Workflow Automation

• The Missing Link Between Pentest Findings and Fixes
• Automate Pentest Findings Delivery in Real-Time
• Black Hat 2025 Takeaways, Including the AI imperative
• Deliver Automated Vulnerability Lifecycle Management