SNsanket narawadeinsecure-code-review.hashnode.dev·Apr 18, 2025 · 1 min readSecure-Code-Review (Part 2)👨💻 Bugs don’t knock—🕵️♂️ find them before they break in! 🚪💣 Authentication And Password Management: Require authentication for all resources except explicitly public ones. Utilize standard , well trusted authentication service. Ensure if au...00
SNsanket narawadeinsecure-code-review.hashnode.dev·Apr 18, 2025 · 2 min readSecure-Code-Review (Part 1)🚨 Unlock the Secrets of Secure Code Review with OWASP – A Must-Read for Every Developer! 🔐 Input Validation : Perform secure input validation on a secure system ( server-side , not client side) it means when the data is send from client to server....00
SNsanket narawadeinidor.hashnode.dev·Apr 18, 2025 · 2 min readInsecure Direct Object ReferenceWhat is IDOR ?, What are the different types of IDOR ?, How to find IDOR ?, How to prevnt IDOR? Defination : It is vulnerability that occurs when an application allows users to access resources by directly referencing an object identifier without pro...00
SNsanket narawadeinopen-redirect.hashnode.dev·Apr 14, 2025 · 3 min readOpen RedirectWhat is open-redirect ? , What are the different types of open-redirect ? , What are the different vulnerability can combine with open-redirect ? , Different bypasses for open-redirect ?, What is impact and mitigation ? Defination: Open Redirect is v...00
SNsanket narawadeinxxe.hashnode.dev·Apr 12, 2025 · 3 min readExternal Entity Injection (XXE)What is XXE ? , What are the different types of XXE ? ,Different areas in the application can find XXE?, Bypasses , What are the vulnerability chain with XXE ?, What is there impact and mitigation ? Defination It is a vulnerability where allow an att...00