This blog is dedicated to penetration testing and offensive security for ethical hackers, security professionals, bug hunters or anyone interested in cybersecurity.

Jacobo started in cybersecurity around 2001 doing vulnerability research and exploit writing. He has worked as a consultant and penetration tester for top tier banks, the European Central Bank, pharmaceutical and automotive companies. Last years he has been working in Product Security for a leading mobile videogames American publisher.

He got a Master’s Degree in Computer Science and hold Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP) and Certified Blockchain Security Professional (CBSP) certifications.

Why subscribe?

Subscribe to get full access to the newsletter and website. Never miss an update.

Stay up-to-date

You won’t have to worry about missing anything. Every new edition of the newsletter goes directly to your inbox.

Join the crew

Be part of a community of people who share your interests.

To find out more about the company that provides the tech for this newsletter, visit


  • The profile picture has a Creative Commons 3.0 license and its creators are: Phantom Open Emoji maintainers and contributors Source:

  • Never use the techniques described here against any IP address or software you do not own or if it is not inside the scope of a bug bounty program. Remember that in a penetration testing engagement you must comply the rules of engagement and the hosts that are part of the audit.

Subscribe to Learn Pentesting like a Pro!

Writing about Infrastructure, Linux, Windows, Web and Blockchain offensive security and other random thoughts


Pentesting since 2001. Writing about infrastructure, Linux, Windows, Web and blockchain cybersecurity