Web Application Security

What is the Difference Between AWS Vs Azure Vs Google from a Cloud Security Standpoint

3725

23/09/2021

These services are designed to provide easy, affordable access to applications and resources, without the need for internal infrastructure or hardware

Read More

HOW CAN THE OWASP DEPENDENCY TRACKER BE USED TO IMPROVE THE APPLICATION SECURITY LIFECYCLE?

11010

16/09/2021

Dependency Track is a free, open-source continuous component analysis platform that helps businesses discover and mitigate supply chain risk

Read More

End to End Email Security with DMARC Records

5037

10/08/2021

DMARC also known as Domain Message Authentication, Reporting & Conformance is a technical standard that helps protect email senders and recipients from email related spoofing and phishing attacks

Read More

Evolution of Ransomware and the trends in 2020

7775

29/04/2020

Nowadays the biggest danger that we come across and also something that we are about to face in future is The cyber threat the crime that happens via internet and technology.

Read More

A Deep Dive into SAML-SSO Security Testing Approach

10105

14/04/2020

SAML the Security Assertion Markup Language was created by an organization known as OASIS.Nowadays applications make use of the latest version of SAML 2.0.

Read More

Important Vulnerabilities And Smart Ways To Be Secured From Them

4996

06/11/2019

There’s a saying, ”Change is the only thing that never changes!” Similarly, each and every year has a change .

Read More

What Do You Need To Know About Cyber Kill Chain?

5184

18/10/2019

The Cyber Kill Chain framework is a part of the Intelligence driven defense model for identification and prevention of cyber intrusion activities (i.e. Hack or Breach).

Read More

Guidelines to Secure Web Services and API End-Points

7585

20/08/2019

Web Service is a software service used to create a communication between 2 devices connected over a network through internet.

Read More

Detection and Exploitation of XML External Entity Attack XXE

9570

30/05/2019

XML External Entity Attack happens when an application allows an input parameter to be XML or incorporated into XMLwhich is passed to an XML parser

Read More

Server Side Includes Injection

8854

29/05/2019

Server Side Includes (SSIs) are directives present on web applications, used to feed an HTML page of the application with dynamic contents based on user’s input.

Read More

CRLF Injection Attack

13774

28/05/2019

The term CRLF refers to Carriage Return (ASCII 13, , \r) Line Feed (ASCII 10, , \n). Carriage Return means the end of a line, and Line Feed refers to the new line. In more simple words, both of these are used to note the end of a line.

Read More

Null Byte SQL Injection

14957

04/05/2019

Null Byte Injection is an exploitation technique which uses URL-encoded null byte characters to the user-supplied data. This injection process can alter the intended logic .

Read More

How to secure your Github repository?

7547

04/05/2019

GitHub is a hosting platform which helps developers to collaborate in building software’s. It helps the developers to manage source code management.

Read More

Drupal Core Remote Code Execution Vulnerability: CVE-2019-6340

6420

14/03/2019

Drupal is one of the most popular open source Content Management System (CMS) meant for developing, designing etc.

Read More

Techniques to Secure your SOAP and REST API

6901

13/02/2019

An API is called as Application Programming Interface which is used for communication. An API acts as a middle man who delivers your request to the provider and then delivers response to

Read More

Are you still fighting against decade old application attacks

4863

30/01/2019

In this modern digital era, online transactions play a pivotal role.

Read More

Beware of Data War

5138

30/01/2019

Data as general is a set of information, knowledge or fact that is measured and stored in storage devices.

Read More

Top Trending Web app security Vulnerabilities

5661

22/01/2019

For a long time in the cyber security world, Web applications are subjected to various kinds of security vulnerabilities because of the increase in its usage and the use of dynamic web application technologies

Read More

Server-Side Request Forgery-SSRF

12548

11/10/2018

Server-Side Request Forgery (SSRF) refers to an attack, wherein an attacker can send a maliciously crafted request from a vulnerable web application

Read More

SQL Injection -Using Burp Suite

28793

08/10/2018

SQL injection is an attack when an attacker persuades to “inject” his harmful/malicious SQL code into someone else’s database, and force that database to run his SQL

Read More

Command Execution Attacks on Apache Struts server CVE-2017-5638

10889

06/10/2018

Apache Struts is a free, open-source, MVC framework for creating elegant and modern Java web applications.

Read More