Tag: web-security

All the articles with the tag "web-security".

• Business Logic Vulnerabilities: What Scanners Miss

  20 Mar, 2023

  Master business logic vulnerabilities that automated scanners can't find. Learn real-world attack examples, testing methodology, and how to explain these non-technical flaws in security interviews.

• Serialization Attacks for Pentesters: Deserialization Vulnerabilities Explained

  28 Nov, 2022

  Master serialization and deserialization attacks. Learn how to identify and exploit insecure deserialization in Java, PHP, Python, .NET, and more.

• How Proxies Work for Pentesters: Forward, Reverse & Interception

  3 Oct, 2022

  Master proxy fundamentals for penetration testing. Learn forward vs reverse proxies, transparent proxies, Burp Suite internals, and how to intercept HTTPS traffic.

• Same-Origin Policy & CORS Deep Dive for Pentesters

  15 Aug, 2022

  Master browser security fundamentals. Learn Same-Origin Policy, CORS misconfigurations, and how to exploit cross-origin vulnerabilities in penetration testing.