Web Security Blog

3 types of vulnerability scanners that matter for application security

Thu, 09 Jan 2025

Application vulnerability scanning can mean different things depending on which part of the sprawling application stack you’re looking at. There are at least three main types of vulnerability scanner that are relevant to securing modern cloud-based software, but dedicated application security scanners are especially important for covering your real-life application attack surface.

Read more

Black-box security testing

Tue, 31 Dec 2024

What is API Security? A comprehensive guide to API security

Fri, 20 Dec 2024

How to prevent CSRF attacks by using anti-CSRF tokens

Mon, 16 Dec 2024

How to select a DAST scanner

Fri, 06 Dec 2024

CWE Top 25 for 2024: XSS, SQLi, buffer overflows top the list

Wed, 27 Nov 2024

How to prevent SQL injection

Thu, 21 Nov 2024

How the BEAST attack works: Reading encrypted data without decryption

Thu, 14 Nov 2024

Invicti Security

Doubling down on components: SCA and Container Security on the Invicti platform

Mon, 11 Nov 2024

3 AppSec headaches you can cure with Predictive Risk Scoring

Fri, 25 Oct 2024

Top 5 injection attacks in application security

Fri, 18 Oct 2024

Layered security testing is the way—and DAST is what holds the layers together

Thu, 10 Oct 2024

Insecure deserialization in web applications

Fri, 04 Oct 2024