Tag feed

#web-app-security

30 posts0 followers

Trending tags this week

Rrathsararerr-cyber.hashnode.dev

Moving From a Managed WAF to One We Actually Owned

5d ago · 10 min read · The Problem We were running a managed WAF. Every firewall rule change went through a vendor support ticket. For a team with active internal software development, that meant every deployment had a gate

Join discussion

Rrathsararerr-cyber.hashnode.dev

0

Securing 200+ Web Assets When You Don't Even Know What You Have

Apr 27 · 9 min read · The Problem: You Can't Secure What You Don't Know Exists I was tasked with securing the web assets of a multinational financial group with over 50 business units spread across multiple countries. The

Join discussion

CCyberFreak999cyberfreak.hashnode.dev

0

The Fundamentals of API Security: Part 2

Mar 4 · 3 min read · If Part 1 focused on prevention through governance and design, this part focuses on detection and defence. Even secure APIs degrade over time: Code changes Infrastructure updates Configuration drif

Join discussion

CCyberFreak999cyberfreak.hashnode.dev

0

The Fundamentals of API Security: Part 1

Mar 2 · 4 min read · Modern applications are no longer page-driven. They are API-driven. Mobile apps, SaaS platforms, fintech dashboards, and IoT systems all rely on APIs to move sensitive data between users and backend s

Join discussion

CCyberFreak999cyberfreak.hashnode.dev

0

How to Test for IDOR Vulnerabilities

Feb 22 · 4 min read · You log into a web app to download your invoice. The URL looks harmless: https://example.com/invoice?id=4521 Out of curiosity, you change the number to 4520. You suddenly see someone else’s invoice.

Join discussion

AMAdbin Magarthegreylens.hashnode.dev

0

DVWA in Docker: Fast Setup for Hands-On Web Security LabsSetup Guide

Feb 22 · 3 min read · DVWA in Docker provides a fast, disposable environment for practicing web-application security techniques. This guide walks you through a concise, step-by-step setup on Linux (Ubuntu/Debian recommende

Join discussion

DSDaniel Scraggdscragg.com

0

eWTPXv3: A review and some advice.

Jan 25 · 4 min read · I’ve been working in IT/cybersecurity for almost 4 years — most of which has been spent in offensive security. Through the years I’ve done a lot of end-to-end pentesting assessments of all types. However, I’ve always felt that Web App Security was my...

Join discussion

GVGaurav Vishwakarmablogs.gaurav.one

0

Building Secure AI-Powered Web Apps: Data Management Best Practices for 2025

Jan 14 · 7 min read · The integration of Artificial Intelligence into web applications is no longer a futuristic concept; it's a present-day reality rapidly shaping our digital landscape. From personalized user experiences to intelligent automation, AI is unlocking unprec...

Join discussion

JTJames Thomasjamestechblog.hashnode.dev

0

All You Need to Know About Application Security Testing

Jan 6 · 6 min read · Introduction With organizations deciding to have almost all of their services available through mobile applications and other web services, testing software and apps are now a necessity. The ever-increasing threat of cyber-attacks makes security appl...

Join discussion

CCCoding Cafecodelearnexplore.hashnode.dev

1

JWTs Explained: A Beginner’s Guide

Nov 8, 2025 · 3 min read · Today, I want to walk through the basics of JWTs (JSON Web Tokens). They show up on most modern websites, so understanding them is a helpful skill for any new developer. To understand the importance of JWT, let’s take a quick trip down memory lane: i...

TJonathan commented

#web-app-security

Search Hashnode

#web-app-security

Trending tags this week

Moving From a Managed WAF to One We Actually Owned

Securing 200+ Web Assets When You Don't Even Know What You Have

The Fundamentals of API Security: Part 2

The Fundamentals of API Security: Part 1

How to Test for IDOR Vulnerabilities

DVWA in Docker: Fast Setup for Hands-On Web Security LabsSetup Guide

eWTPXv3: A review and some advice.

Building Secure AI-Powered Web Apps: Data Management Best Practices for 2025

All You Need to Know About Application Security Testing

JWTs Explained: A Beginner’s Guide