Using SecLists for Penetration Testing ...
Introduction to SecLists Seclists is something that comes very handy to a pen tester. The simple reason is, it has a collection of all the…
Read More
Application Security: Risks and Best Practices ...
Applications play a crucial role in our lives as we use them for various useful purposes, ranging from shopping, interacting with people, managing finances, etc….
Read More
Security Threat Intelligence Standards – STIX an ...
Introduction: Security Threat Intelligence Standards (STIX and TAXII) make day-to-day SOC operations go uninterrupted with a shared strategy that provides a collaborative response to cybersecurity…
Read More
Code Injection Vulnerabilities ...
Introduction to Code Injection Vulnerabilities Code injection is an attack where the attacker tries to inject a code that can be interpreted and executed by…
Read More
Web Cache Poisoning DoS Attack ...
The Web Cache Poisoning DoS Attack, also known as CPDoS. It is a type of DoS attack that primarily relies on the webserver’s cache mechanism….
Read More
NoSQL Injection Vulnerability ...
In this blog, we will be discussing the NoSQL Injection Vulnerability and its exploitations scenarios. Before getting into the details of NoSQL injections, let us…
Read More
Hibernate Query Language (HQL) Injection ...
HQL is the abbreviation for Hibernate Query Language. Hibernate can be classified as ORM or Object-Relational Mapping. It maps class definitions with similar SQL tables that…
Read More
WebSocket Vulnerabilities ...
This blog is about different types of WebSocket Vulnerabilities/Findings. So, we will be discussing different types of flaws that may exist in WebSockets. WebSockets are…
Read More
Mass Assignment Vulnerability ...
Before getting into the Mass Assignment vulnerability, let us know what exactly mass assignment is and where it is used. It refers to the assignment…
Read More
Secure Software Development Lifecycle (SDLC) ...
Since the threat landscape in the software development ecosystem is ever-evolving, we need to reconsider the security controls used throughout the software development and delivery…
Read More