Web Security Blog

About the Author

Zbigniew Banach - Technical Content Lead & Managing Editor

Cybersecurity writer and blog managing editor at Invicti Security. Drawing on years of experience with security, software development, content creation, journalism, and technical translation, he does his best to bring web application security and cybersecurity in general to a wider audience.

MORE FROM THIS AUTHOR

An abundance of caution: Why the curl buffer overflow is not the next Log4Shell

Tue, 24 Oct 2023

Rapid Reset HTTP/2 vulnerability: When streaming leads to flooding

Mon, 16 Oct 2023

Top 5 application security misconfigurations

Thu, 12 Oct 2023

NIST Cybersecurity Framework gets user-friendly: Upcoming changes in CSF v2.0

Fri, 22 Sep 2023

PCI DSS v4.0 makes integrated application security a compliance requirement

Fri, 08 Sep 2023

DAST tools are only as good as their setup and support

Thu, 31 Aug 2023

Building accurate DAST into the CI/CD pipeline saves you time – and money

Fri, 11 Aug 2023

SAST vs. DAST vs. IAST: Everything you always wanted to know but were afraid to AST

Wed, 26 Jul 2023

Making automated API vulnerability testing a reality

Wed, 12 Jul 2023

CWE Top 25 for 2023: Buffer overflows, XSS, SQL injection lead the pack

Fri, 07 Jul 2023

MOVEit Transfer breaches are a perfect storm of application security risks

Fri, 30 Jun 2023

What’s missing from the OWASP API Security Top 10 2023

Thu, 22 Jun 2023