What are types of Cross-Site Scripting (XSS) attacks?
We typically have 3 types of Cross-Site Scripting (XSS) attacks, this is
outdated knowledge still circculating today.
Current Application Security
Vulnerability or Defect?
AppSec tooling does not find any vulnerabilities, it finds defects.
But when is a defect a vulnerability?
The 5 Myths of Application Security
The AppSec "high barrier to entry" is just an excuse. It won't take long for you to look foolish for avoiding your AppSec
JWT and HMAC in the browser, safe?
Is using JWT and HMAC in the browser, safe?
How could they be?
Don't they require a pre-shared