ImmuniWeb Security Blog | Page 27
Penetration testing is usually billed by the number of hours the security auditors (pen testers) spend on a project, many of us face the same question: how long does a penetration ...
What are biggest risks and threats your web applications will probably face in 2015?
Vulnerability scanning can be very cheap or even free, while penetration testing can be considered quite expensive and time-consuming to plan and execute. However, penetration ...
There is no need to convince people that XSS was, is and probably will be the most frequent web vulnerability. However, many people, including security engineers, team leaders and ...
In this blog post we are going to analyze an integer overflow we discovered in PHP (version <= 5.6.1, 5.5.17, 5.4.33) during our security research campaign which was conducted on ...
When Symantec, one of the grand old dames of security, decided to split itself into two separate companies last week, it raised questions about the entire security market. It ...
A by-product of High-Tech Bridge’s ImmuniWeb® web application penetration test SaaS is the frequent discovery of vulnerabilities in popular web applications and CMSs.
Bug bounties are in the news again. Twitter has announced its own new scheme, while Robert Graham of Errata Security claims legal actions brought for loss of personal data will ...
Microsoft case shows the NSA is not a hacking threat; organized crime remains the biggest problem.
Today when the media is full of talk about privacy and the right to be forgotten introduced by Google, I get the impression that some companies use and even abuse their right to ...
High-Tech Bridge operates a responsible disclosure policy. When our researchers find a vulnerability we file a report to the vendor, which contains all details about the ...
ImmuniWeb® Self-Fuzzer is a simple Firefox browser extension designed to detect Cross-Site Scripting and SQL Injection vulnerabilities in web applications.