Tag: appsec

All the articles with the tag "appsec".

• Threat Modeling for Security Engineers

  20 Aug, 2024

  Master threat modeling for security engineering roles. Learn STRIDE, PASTA, attack trees, and practical exercises to identify security risks before they become vulnerabilities.

• Burp Suite Professional Workflow for Security Engineers

  10 May, 2024

  Master professional Burp Suite workflows for web application security testing. Learn advanced features, essential extensions, automation techniques, and interview-ready methodologies.

• API Pentesting Cheat Sheet: Hands-On Commands for OWASP API Top 10

  10 Nov, 2023

  A practical command reference for testing API vulnerabilities. Step-by-step techniques for BOLA, JWT attacks, BFLA, SSRF, GraphQL exploitation, and more.

• API Penetration Testing: OWASP API Security Top 10 (2023) Explained

  10 Nov, 2023

  A practical breakdown of the OWASP API Security Top 10 vulnerabilities, real-world breach analysis, and the methodology I use for API pentesting engagements.