Tag feed

#owasp-top-10

103 posts26 followers

Trending tags this week

EEEmma Engströmpentesting-dvwa.hashnode.dev

Cryptography Problems in DVWA

May 6 · 20 min read · Introduction Cryptography is used everywhere in modern applications to protect sensitive data such as passwords, session tokens, and personal information. Strong cryptographic algorithms are essential

Join discussion

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

File Inclusion in DVWA

May 5 · 22 min read · 1 Introduction In this post, the File Inclusion vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for local file inclusion (LFI) attacks on all levels is to read

Join discussion

MBMouhamed Ben Abdallaherinmin-writeups.hashnode.dev

0

File path traversal, simple case WriteUp & Walkthrough

May 2 · 4 min read · Lab Writeup: File Path Traversal — Simple Case Platform: PortSwigger Web Security Academy Vulnerability: Path Traversal (CWE-22) Difficulty: Apprentice Tool Used: Caido (Burp Suite alternative) What

Join discussion

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

Blind SQL Injection in DVWA

Apr 26 · 28 min read · 1 Introduction In this post, the Blind SQL Injection vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks on all levels is to find the version of the SQL

Join discussion

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

Insecure CAPTCHA in DVWA

Apr 18 · 27 min read · 1 Introduction In this post, the Insecure CAPTCHA vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks on all levels is to bypass the poor CAPTCHA system

Join discussion

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

Weak Session IDs in DVWA

Apr 12 · 16 min read · 1 Introduction In this post, the Weak Session IDs vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks on all levels is to work out how the ID is generat

Join discussion

HAHardik Arorahardik0811arora.hashnode.dev

0

🛡️Educonnect: A Deep Dive into Cloud-Native Security & K3s Orchestration

Mar 29 · 5 min read · "If you can't measure it, you can't secure it." In this post, I’m pulling back the curtain on the EduConnect CI/CD pipeline. We aren't just looking at code; we are looking at real-time security telem

Join discussion

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

JavaScript Attacks in DVWA

Mar 26 · 21 min read · 1 Introduction In this post, the JavaScript Attacks vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks on all levels is to analyse and manipulate the J

Join discussion

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

API Security in DVWA

Mar 21 · 29 min read · 1 Introduction In this post, the API Security vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks across all security levels is to exploit weaknesses in

Join discussion

MNMilan Nikicsecuritydepth.hashnode.dev

0

Authentication Vulnerabilities: Strategic Defense and Organizational Controls (Part 4)

Mar 16 · 18 min read · In the previous parts of this series, we discussed the authentication vulnerability from the developer’s point of view. We discussed password requirements based on NIST guidelines, rate limiting using

Join discussion

#owasp-top-10

Search Hashnode

#owasp-top-10

Trending tags this week

Cryptography Problems in DVWA

File Inclusion in DVWA

File path traversal, simple case WriteUp & Walkthrough

Blind SQL Injection in DVWA

Insecure CAPTCHA in DVWA

Weak Session IDs in DVWA

🛡️Educonnect: A Deep Dive into Cloud-Native Security & K3s Orchestration

JavaScript Attacks in DVWA

API Security in DVWA

Authentication Vulnerabilities: Strategic Defense and Organizational Controls (Part 4)