Web Application Security Zone by Netsparker

Content Security Policy (CSP) Standard Explained

Category: Web Security Readings - Fri, 11 Nov 2016 - by Robert Abela

This article explains how the Content Security Policy security standard works and how it can be used by web developers when developing web applications to avoid cross-site scripting, clickjacking, protocol downgrading and other vulnerabilities web applications are typically susceptible to. Read More

Command Injection Vulnerability

Category: Web Security Readings - Fri, 25 Nov 2016 - by Robert Abela

This article explains what is the command injection vulnerability, how it works (how malicious hackers can exploit it) and also explains how to ensure your web applications are not vulnerable to this vulnerability. Read More

SQL Injection Cheat Sheet

Category: Web Security Readings - Fri, 02 Dec 2016 - by Robert Abela

Use our SQL Injection Cheat Sheet to learn about the different variants of the SQL Injection vulnerability. In this cheat sheet you can find detailed technical information about SQL Injection vulnerabilities against MySQL, Microsoft SQL Server, Oracle and PostgreSQL SQL servers. Read More

Security Weekly and Ferruh Mavituna Talk Automation and Scaling Up Web Application Security

Category: Web Security Readings - Fri, 13 May 2016 - by Robert Abela

During episode #442 of Security Weekly, Ferruh Mavituna, Paul Asadoorian, Jeffrey Man and several other web security professionals talk about the challenges of automating web application security and how companies can scale up automated web application security scanning and scan 100s and 1000s of web applications with the least possible resources. Read More

An Introduction to the Digital Black Market, or as also known, the Dark Web

Category: Web Security Readings - Thu, 15 Oct 2015 - by Robert Abela

Have you ever wondered about what happens in the digital black market, or as better known the dark web? Do you know how easy it is for someone who does not have any security experience to buy a tool that can find vulnerabilities in websites and exploit them automatically? Read this article for more detailed information of how the dark web evolved and about the things you and anyone else can do with just a little bit of money. Read More

An Easy to Use Web Application Security Scanner Means More Secure Web Applications

Category: Web Security Readings - Tue, 17 Nov 2015 - by Robert Abela

Most security software is very difficult to use hence businesses and organizations are failing to ensure the security of their IT assets. See how Netsparker is helping businesses ensure the long term security of their websites and web applications by developing an easy to use web application security scanner that also allows more automation. Read More