icon Book Free Consultation
29th April 2020

Evolution of Ransomware and the trends in 2020

Nowadays the biggest danger that we come across and also something that we are about to face in future is The cyber threat the crime that happens via internet and technology.

Read More
30th June 2023

Top 10 Compelling Reasons Why Web Application Security Testing Should Be a Priority

In today's interconnected world, where businesses rely heavily on web applications to interact with customers.

Read More
18th June 2024

Ransomware The Deadliest Threat to Modern Cybersecurity

Ransomware has emerged as one of the most dangerous and persistent threats in the cybersecurity landscape.

Read More
7th July 2023

Maximizing Security: Uncovering Threats with In-house Security and External VAPT Team

Discover how combining in-house security expertise with external VAPT teams can maximize your organization's security.

Read More
30th September 2019

Growing Data Breaches And The Best Ways To Be Safe From Them

Data breaches – Unarguably, it’s a word that’s roaring predominantly and endlessly in each and every part of this digital world, without any precincts.

Read More
31st July 2019

The security and privacy risks of face recognition authentication

Biometric Identification has changed the way people were identified. Since the Last decade, its growth is incredible and has transformed a lot of industries from military

Read More
11th October 2018

Server-Side Request Forgery-SSRF

Server-Side Request Forgery (SSRF) refers to an attack, wherein an attacker can send a maliciously crafted request from a vulnerable web application

Read More
8th July 2019

Android Manifest File Analysis 101

Android Manifest file provides the system with necessary data like application’s configuration information, permissions, and app components. Android Manifest File can be obtained by extracting any APK File and also while doing assessment, you can use APKtool & Drozer for extracting the Manifest file from the application.

Read More
4th May 2019

Getting Started with Frida

Frida is a dynamic instrumentation toolkit. It is mainly created for testers, developers and reverse engineering enthusiasts. For mobile app security testers, Frida is like Swiss army knife.

Read More
22nd July 2022

What is the difference between VA and PT ?

Thief plots heist at home. It takes him some time to figure out how to get into the house without being noticed. What we're doing here is called Vulnerability assessment.The thief could have used a glass door .

Read More
27th February 2023

Top 10 reasons to partner with briskinfosec cybersecurity experts to prevent cyberattacks and data breaches

If you're a business owner, you know that cybersecurity is an essential concern.

Read More
21st June 2022

Is there a difference between authentication and authorization in an API?

As with web applications, APIs operate on the web, but many require some sort of authentication or authorization before you can access the valuable.

Read More
4th May 2022

Is Beast Attack Really Breaking Your SSL TLS

BEAST (Browser Exploit Against SSL/TLS) is a network vulnerability attack against TLS 1.0 and older SSL protocols. Security researchers carried out the attack for the first time in 2011, but the theoretical vulnerability was discovered in 2002.

Read More
18th January 2019

The Modern Rules of Mobile App Security Best Practices

Before heading into the concept of “Mobile App Security Best Practices” let’s not forget the undeniable fact that thousands of mobile applications for both Android and iOS ...

Read More
23rd August 2022

Why should we use a proxy server?

People don't often stop to think about the most basic parts of how the internet works. But what happens when you browse the Internet? You could be using a proxy server at work, on a Virtual Private Network (VPN).

Read More
25th August 2022

HTTPS Request Smuggling Attacks and How to Stop Them?

Who will offer $36,000 for finding a bug? Yes, it has happened. And, by the the greatest company of the planet: Apple. From the prize, you can well understand the magnanimity .

Read More
13th October 2022

What is Black box Security Testing?

In this kind of testing, the penetration tester acts like a normal hacker who doesn't know anything about the target system.Testers don't get any diagrams of the architecture or source code that isn't available to the public.

Read More
6th November 2019

This Awesome Stuff Will Make You Understand What Red Team And Blue Team Is

Most people think that Red Teaming and Blue Teaming are different approaches for testing and identifying the security flaws.

Read More
30th June 2022

How to save yourself from Phishing attacks? A quick guide

Phishing is a type of social engineering attack used to obtain sensitive information from users, such as login credentials and credit card information.It

Read More
30th January 2019

Are you still fighting against decade old application attacks

In this modern digital era, online transactions play a pivotal role.

Read More
6th November 2019

Important Vulnerabilities And Smart Ways To Be Secured From Them

There’s a saying, ”Change is the only thing that never changes!” Similarly, each and every year has a change .

Read More
21st September 2022

iOS architecture the setup the pros and the cons

If you have used a smartphone or a tablet, then you have probably come across the Android operating system and the iOS mobile operating system. Both of these mobile operating systems

Read More
11th October 2022

What is the difference between OWASP Top 10 and ASVS Security Audit

OWASP is the blueprint for testing the web application security controls. It is safe to say that it helps the developers to develop application.

Read More
13th February 2019

Techniques to Secure your SOAP and REST API

An API is called as Application Programming Interface which is used for communication. An API acts as a middle man who delivers your request to the provider and then delivers response to

Read More