Tag feed

#web-app-security

31 posts0 followers

Trending tags this week

ASArpita Singhalarpitasinghal.hashnode.dev

Guided Pentest: Web | TryHackMe

4d ago · 7 min read · Introduction Most CTFs drop you into a machine and say "find the flags." This room does something more valuable — it walks you through a realistic web application pentest from start to finish, explain

Join discussion

Rrathsararr-cyber.hashnode.dev

0

Moving From a Managed WAF to One We Actually Owned

May 8 · 10 min read · The Problem We were running a managed WAF. Every firewall rule change went through a vendor support ticket. For a team with active internal software development, that meant every deployment had a gate

Join discussion

Rrathsararr-cyber.hashnode.dev

0

Securing 200+ Web Assets When You Don't Even Know What You Have

Apr 27 · 9 min read · The Problem: You Can't Secure What You Don't Know Exists I was tasked with securing the web assets of a multinational financial group with over 50 business units spread across multiple countries. The

Join discussion

CCyberFreak999cyberfreak.hashnode.dev

0

The Fundamentals of API Security: Part 2

Mar 4 · 3 min read · If Part 1 focused on prevention through governance and design, this part focuses on detection and defence. Even secure APIs degrade over time: Code changes Infrastructure updates Configuration drif

Join discussion

CCyberFreak999cyberfreak.hashnode.dev

0

The Fundamentals of API Security: Part 1

Mar 2 · 4 min read · Modern applications are no longer page-driven. They are API-driven. Mobile apps, SaaS platforms, fintech dashboards, and IoT systems all rely on APIs to move sensitive data between users and backend s

Join discussion

CCyberFreak999cyberfreak.hashnode.dev

0

How to Test for IDOR Vulnerabilities

Feb 22 · 4 min read · You log into a web app to download your invoice. The URL looks harmless: https://example.com/invoice?id=4521 Out of curiosity, you change the number to 4520. You suddenly see someone else’s invoice.

Join discussion

AMAdbin Magarthegreylens.hashnode.dev

0

DVWA in Docker: Fast Setup for Hands-On Web Security LabsSetup Guide

Feb 22 · 3 min read · DVWA in Docker provides a fast, disposable environment for practicing web-application security techniques. This guide walks you through a concise, step-by-step setup on Linux (Ubuntu/Debian recommende

Join discussion

DSDaniel Scraggdscragg.com

0

eWTPXv3: A review and some advice.

Jan 25 · 4 min read · I’ve been working in IT/cybersecurity for almost 4 years — most of which has been spent in offensive security. Through the years I’ve done a lot of end-to-end pentesting assessments of all types. However, I’ve always felt that Web App Security was my...

Join discussion

GVGaurav Vishwakarmablogs.gaurav.one

0

Building Secure AI-Powered Web Apps: Data Management Best Practices for 2025

Jan 14 · 7 min read · The integration of Artificial Intelligence into web applications is no longer a futuristic concept; it's a present-day reality rapidly shaping our digital landscape. From personalized user experiences to intelligent automation, AI is unlocking unprec...

Join discussion

JTJames Thomasjamestechblog.hashnode.dev

0

All You Need to Know About Application Security Testing

Jan 6 · 6 min read · Introduction With organizations deciding to have almost all of their services available through mobile applications and other web services, testing software and apps are now a necessity. The ever-increasing threat of cyber-attacks makes security appl...

Join discussion

#web-app-security

Search Hashnode

#web-app-security

Trending tags this week

Guided Pentest: Web | TryHackMe

Moving From a Managed WAF to One We Actually Owned

Securing 200+ Web Assets When You Don't Even Know What You Have

The Fundamentals of API Security: Part 2

The Fundamentals of API Security: Part 1

How to Test for IDOR Vulnerabilities

DVWA in Docker: Fast Setup for Hands-On Web Security LabsSetup Guide

eWTPXv3: A review and some advice.

Building Secure AI-Powered Web Apps: Data Management Best Practices for 2025

All You Need to Know About Application Security Testing