[Infographic] How AppSec Testing can pay off your Security Debt
Security debt is just like procrastination. You let all these vulnerabilities pile up without testing or fixing them, and suddenly, […]
November 10, 2020
3 Ways to Exploit Misconfigured Cross-Origin Resource Sharing (CORS)
The Same-Origin Policy(SOP) restricted information sharing between applications and allowed sharing only within the domain the application was hosted […]
October 20, 2020
5 Tips on How to Choose an Application Security Testing Vendor
When it comes to choosing a vendor that can effectively test your apps for security flaws, there’s just so many […]
October 20, 2020
Why Regression Testing is So Important for AppSec Automation
It’s a fact of life that practically all the applications we use and develop today are in constant flux. Features […]
October 19, 2020
3 Ways That An XXE Injection Attack Could Hit You Hard
Web / Mobile Applications, Word Processors , Web Services, and Content Management Platforms use the Extensible Markup Language (XML) format […]
October 13, 2020
A Step by Step Guide to Integrate ZAP with Jenkins
You’re probably here because you want to improve your application security while it’s still in the pipeline. In a Rapid Application […]
October 6, 2020
Your Excel Sheets Are Not Safe! Here’s How to Beat CSV Injection
Here’s something a lot of you might not have thought much about: security vulnerabilities in your Excel sheet. Well, not in […]
October 5, 2020
Why Authorisation is Still a Major Security Issue in Your Web Apps
When you look at the biggest trends in software development in the last few years, Web and Mobile apps stands […]
September 22, 2020
How Contained are your Issues with Containers?
In the 1948, an American chemist named Earl Tupper introduced a new type of plastic container. It was a fantastic […]
September 8, 2020
The 10 Step Application Security Test
Securing apps is a major challenge and achievement for any organization. For an app to be secure, it should not […]
September 3, 2020
3 Reasons You Should Be Threat Modelling Today
Let’s be straight here. I’m sure a lot of you have the sneaking suspicion that this article and threat modelling […]
August 20, 2020
7 Features that make ZAP Great for Application Security Testing
The Zed Attack Proxy (ZAP) is one of the most widely-used open source tools for dynamic application security testing (DAST). […]