Fixing a vulnerability in an application is not always possible, especially when we are talking about big and complex applications. Sometimes, making the fix consume much more money and time that makes it really useless. I have worked with many clients that were in the same situation and here is ...
APIs are the new most popular way to make complex and scalable web applications. According to the community forum programmableweb.com in 2015 they have listed 12,000 APIs in their directory, and in early 2019 they discovered that the number has gone to nearly 22,000, which prove the rapid growth in ...
If you are looking at this post right now, is that you are definitely thinking about securing your website, or at least you are looking for a reason that will motivate you to invest in such a thing. So let me give you 10 reasons why website security is an ...
Along with my whole experience in penetration testing, every time I start a new mission I always ask my clients this question. What type of penetration test do you need me to perform? Therefore, I decided to write a post about it. The best penetration test type in terms of ...
For those who didn’t see the first and the second part. This blog post is a part of a long series where I explain in detail how to prevent and how to fix the SQL injection attack vulnerability in multiple web development technologies. The idea is to create the most ...
For those who didn’t see the first part. This blog post is a part of a long series where I explain in detail how to prevent the SQL injection attack in your source code. This guide is an open series of posts and this is the first post. If you ...
With the rapid advancement in technology, businesses of all sizes have become increasingly reliant on workforce mobility, cloud computing, the Internet of Things (IoT), and digital media. Data breach have gained widespread popularity as sensitive business data is stored on local machines, cloud servers, and enterprise databases. So what is ...
After several years of penetration testing and working with development teams to secure their systems, I have noticed that there was no complete blog post that gives a detailed explanation of how to prevent SQL injection attacks in all the most popular web application development languages and frameworks. Therefore, I ...
If you have a website or you are thinking about starting one, then you have definitely heard about the GDPR and you also heard that you will need to comply with it. So what is the meaning of GDPR? GDPR “The General Data Protection Regulation” is a European regulation for ...
Undoubtedly, ChatGPT stands out as one of the most remarkable inventions of 2021. Its wide-ranging capabilities and applications have opened up endless possibilities for human interaction and problem-solving. Furthermore, certain users have begun employing ChatGPT for the actual execution of smart contract audits. However, can ChatGPT audit a smart contract? [...]
