HTML-Entity escaping to prevent XSS Understanding HTML Entity Escaping to Prevent XSS Attacks Cross Site Scripting XSS attacks pose a significant risk to web applications They allow malicious acto 2 min read 08-10-2024 8
What is "X-Content-Type-Options=nosniff"? Defending Against MIME Sniffing Understanding X Content Type Options nosniff In the vast landscape of web security one often overlooked aspect is the potential 2 min read 07-10-2024 7
How to check if my application is secure from the common types of attack Securing Your Application A Guide to Common Attack Vectors In the digital age securing your application is paramount A breach can lead to data loss financial da 2 min read 05-10-2024 7
How can i capture request and response details of each attack? Capturing Request and Response Details of Each Attack A Comprehensive Guide In todays digital landscape understanding the request and response details of potent 3 min read 14-09-2024 16
Can we perform selective injections as a payload to test vulnerabilities in zap with python? Injecting Payloads with ZAP and Python for Enhanced Vulnerability Testing Problem You re trying to test for vulnerabilities in your web application using ZAP bu 2 min read 13-09-2024 14
Why innerHTML injects data into page if it doesn't use append on body? Understanding the Magic of inner HTML How Data Gets Injected Without Appending to the Body You might have heard the rule always append to the body when injectin 2 min read 13-09-2024 20
Use of a broken or risky cryptographic algorithm encryption algorithm. base64EncodedString should not be used Why Base64 Encoding Isnt Secure A Deep Dive You re right to be concerned about using base64 Encoded String in your Swift code While Base64 encoding is a popular 2 min read 05-09-2024 14
OWASP Amass Subcommands Demystifying OWASP Amass Subcommands A Comprehensive Guide OWASP Amass is a powerful open source tool for reconnaissance and asset discovery Its used by securit 2 min read 02-09-2024 13