Search Results

Useful links : XSS attacks What is cross-site scripting (XSS) and how to prevent it? | Web Security Academy CSRF attacks What is CSRF (Cross-site request forgery)? Tutorial & Examples | Web Security Academy XSF attacks Framing Attacks and Cross-frame scr...

Definition SRF (Cross-Site Request Forgery) attacks involve tricking authenticated users into unknowingly performing actions on a web application. The attacker exploits the trust between the victim's browser and the application to execute unauthorized actions...

Definition XSS (Cross-Site Scripting) attacks are security vulnerabilities in web applications where an attacker injects malicious scripts into trusted websites, allowing them to execute arbitrary code in the victim's browser. This can lead to unauthorized ac...

JWT is safe. JWT misconfiguration is widespread and involves huge security breaches Ressources Debug and decode JWT token (mirror) Stop using JWT for web sessions When to use symmetric signing Exploit on JWT token Re-signing attack Introduction ...

List of tools used to pentest web app Safety Python dependencies check CorsTest Simple CORS misconfiguration tester OWASP Zap Scanner, indexer, vuln discovery, interactive HUD, proxy, ...