1 min read
Achieving web application security
Web applications are at the foundation of how enterprises operate, but as the number of applications used by public and private sectors increases, so
Tag : Web Application Security
1 min read
Data Security: Defending Against the Cache Poisoning Vulnerability
Do you trust your cache? To meet the demands of the end-users and speed up content delivery, content caching by web servers and content delivery
1 min read
Sharpening your FRIDA scripting skills with Frida Tool
FridaLab Tool, an android application specially created to hone the Frida scripting skills on android. These challenges include: Changing a
Static Code Analysis: An important process for finding vulnerabilities
Static code analysis analyses source code and identifies the bugs before the program is run. Vulnerabilities are identified in the source code
Double-check Inputs to Avoid SSRF Vulnerability
Attackers use SSRF, a web application vulnerability, to bring about a request from the server-side application to a random domain; usually, attackers
1 min read
CWE-89
CWE-89: Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’)SQL injection occurs when an end-user leverages the
1 min read
Two Factor Authentication Bypass Techniques And How does it Work?
What is two-factor authentication? Two-factor authentication (2FA) is a specific type of multi-factor authentication (MFA) that strengthens access
1 min read
How to configure BurpelFish
I recently was doing a pentest and was continuously looking up translations for words, and thought “there has to be a better way…”. That is
1 min read
Importance of Cryptography Encryption in Apps & Latest Encryption Algorithm
Definition of ‘Cryptography’ “Cryptography is an information security tactic used to protect enterprise information and communication from
1 min read
How to secure Cloud based web applications – Part 1
A couple of weeks ago, I noticed an article about how to secure web applications which caught my eye, to be honest, the article was aimed at how to
AppSec Cheat Code: Shift Left, Shift Right, Up, Down & Start
Seamless and unobtrusive security is the future. We are huge advocates of shifting left and moving security testing earlier in the development
Sigurlx – A Web Application Attack Surface Mapping Tool
sigurlx a web application attack surface mapping tool, it does …: Categorize URLs URLs’ categories: > endpoint > js {js} > style {css}
1 min read
WPCracker – WordPress User Enumeration And Login Brute Force Tool
WordPress user enumeration and login Brute Force tool for Windows and Linux With the Brute Force tool, you can control how aggressive an attack
Three Excellent API Security Practices Most People Neglect
We are very much in the age of APIs. From widely-used single-purpose products like Slack to cloud-based solutions like Amazon Web Services (AWS) and
1 min read
What is WAF? How Web Application Firewall Evasion Techniques Work?
What is WAF? A web application firewall is a specific kind of application firewall that applies explicitly to web applications. It is released before