web penetration testing Archives

Twelve Days of XSSmas

Mic Whitehorn-Gillam | December 12, 2018 | Javascript, Penetration Testing, Secure Ideas, web penetration testing

This series of daily mini-posts, running from December 12, 2018 to December 24, 2018, is intended to provide cross-site scripting (XSS) related tips. This will range from filter-evasion and payload minification tricks, ...

Professionally Evil Insights

Spring Break without Breaking the Bank: Hands On Training

Kevin Johnson | November 27, 2018 | Burp Suite, class, classes, developers, Hacking, Information Security, open source, Penetration Testing, Professionally Evil, samuraiWTF, training, web app security, web penetration testing

Over the last eight years, one of the main focuses of Secure Ideas has been education. One responsibility we take very seriously is that of growing the skills within our clients and ...

Professionally Evil Insights

Three C-Words of Web App Security: Part 2 – CSRF

Mic Whitehorn-Gillam | October 24, 2018 | API security, Application Security, Best Practices, Cross-site request forgery, CSRF, developers, Penetration Testing, programming, web app security, web penetration testing

This is the second in a three-part series, Three C-Words of Web Application Security. I wrote a sort of prologue back in April, called A Brief Evolution of Web Apps, just to ...

Professionally Evil Insights