Tag feed

#application-security

251 posts53 followers

Trending tags this week

SMShubham Mishrasammy-secops.hashnode.dev

Claude Mythos Preview: Breakthrough, Hype, or Both?

2h ago · 18 min read · Anthropic’s April 2026 launch of Claude Mythos Preview landed like a thunderclap in the security world. The company says Mythos can autonomously discover and exploit serious software vulnerabilities a

Join discussion

MNMilan Nikicsecuritydepth.hashnode.dev

0

Directory Traversal in Java: A Comprehensive Security Guide (Part 1)

5d ago · 16 min read · Directory traversal vulnerabilities are at the core of a failure in the boundary between application logic and filesystem access. There is a tendency to focus on SQL injection, but directory traversal

Join discussion

KAKagen AIunified-application-security-platform.hashnode.dev

0

Why Zero Trust Application Security Is the Most Effective Defense Against Modern Supply-Chain Attacks

6d ago · 4 min read · Modern software development has evolved into a highly interconnected ecosystem powered by open-source components, third-party integrations, cloud services, and automated pipelines. While this accelera

Join discussion

WWiz-Zerobugmithresearch.hashnode.dev

0

From android reverse engineering to identifying secrets, broken access control and API vulnerabilities:

Apr 1 · 7 min read · A Mobile APK Vulnerability Chain in a private program: Client: redacted Method: Static analysis Severity: High to critical Findings: 5 Executive Summary: This write-up details a multi-stage vulnerabil

Join discussion

MNMilan Nikicsecuritydepth.hashnode.dev

0

Building an Application Security Metrics Program: Measuring What Actually Matters

Mar 30 · 27 min read · Security architecture is not just about selecting the right controls or designing secure systems. It is about proving those controls work, tracking their effectiveness over time, and communicating res

Join discussion

CCyberFreak999cyberfreak.hashnode.dev

1

AI Threat Modelling: Understanding Attack Surfaces in Modern AI Systems

Mar 28 · 4 min read · A company deploys an AI-powered chatbot to assist customers. It works perfectly—until one day, it starts leaking internal email addresses and generating unexpected responses from external content. No

MAamer commented

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

JavaScript Attacks in DVWA

Mar 26 · 20 min read · 1 Introduction In this post, the JavaScript Attacks vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks on all levels is to analyse and manipulate the J

Join discussion

MNMilan Nikicsecuritydepth.hashnode.dev

0

DiffGuard: LLM-Powered Security Review for Staged Git Diffs

Mar 23 · 17 min read · We ship code every day. In that code, there is often a SQL injection that nobody noticed, a hardcoded secret that slipped through review, or an XML parser set up with defaults that should have been se

Join discussion

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

CSP Bypass in DVWA

Mar 14 · 13 min read · 1 Introduction In this post, the Content Security Policy (CSP) Bypass vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks on all levels is to bypass the

Join discussion

VBVirusis Blogblog.virusis.com

0

08/03/2026 Cyber Security Briefly News - Critical Threat Convergence: Exploited SD-WAN, AI-Powered Defense, and Evolving Malware Tactics

Mar 8 · 5 min read · 📋 Top Headlines at a Glance SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 87 Recent Cisco Catalyst SD-WAN Vulnerability Now Widely Exploited Week in review: Weaponized OAuth redirection logic delivers malware, Patch Tuesday forecast OpenAI Codex Secur...

Join discussion

#application-security

Search Hashnode

#application-security

Trending tags this week

Claude Mythos Preview: Breakthrough, Hype, or Both?

Directory Traversal in Java: A Comprehensive Security Guide (Part 1)

Why Zero Trust Application Security Is the Most Effective Defense Against Modern Supply-Chain Attacks

From android reverse engineering to identifying secrets, broken access control and API vulnerabilities:

Building an Application Security Metrics Program: Measuring What Actually Matters

AI Threat Modelling: Understanding Attack Surfaces in Modern AI Systems

JavaScript Attacks in DVWA

DiffGuard: LLM-Powered Security Review for Staged Git Diffs

CSP Bypass in DVWA

08/03/2026 Cyber Security Briefly News - Critical Threat Convergence: Exploited SD-WAN, AI-Powered Defense, and Evolving Malware Tactics