Web App Vulnerability Basics: Cross-Site Scripting

Web App Vulnerability Basics: Cross-Site Scripting

​This is an article in a series on Web Application Vulnerability Basics. What Is Cross-Site Scripting? Cross-Site Scripting, also known as “XSS”, is a web exploit that allows an attacker to inject malicious content (such as markup, or scripts) into a web application....
Web App Vulnerability Basics: Path Traversal

Web App Vulnerability Basics: Path Traversal

​This is an article in a series on Web Application Vulnerability Basics. What Is a Path Traversal Attack? Path traversal, also known as directory traversal and backtracking, is an exploit that allows an attacker to access files on a web server that they are not...
What exactly are the OWASP Top 10?

What exactly are the OWASP Top 10?

By: Eric Kobelski As a software developer turned security engineer, I continue to follow current development technologies, as it makes me more of an effective tester. One of the articles that I was reading contained an interview with one of the applications developers...