A version of this post originally appeared at https://www.nccgroup.trust/uk/about-us/newsroom-and-events/blogs/2015/june/username-enumeration-techniques-and-their-value/

One of the first steps when looking to gain access to a host, system, or application is to enumerat...

Scott Helme is a Security Consultant at Pentest Limited, but also has an active blog site (www.scotthelme.co.uk) and has recently launched a new service report-uri.io, a tool for reporting CSP and KPKP violations. The article below is written by Scott, and considers ju...