Bleeping Computer

The OWASP Top 10: What They Are and How to Test Them

Web applications often handle vast amounts of data, from personal user details to sensitive corporate information. As these applications grow in complexity and importance, they also become primary ...
CSOonline

Carney: How to Create an Effective Application Security Program

The starting block of an Application Security initiative is to complete an inventory of all applications within the enterprise. Compile a spreadsheet of the number of applications, type of ...
Dark Reading

5 Lessons Learned From Hundreds of Penetration Tests

Web applications are the top vectors attackers use to pull off breaches. According to Verizon's "Data Breach Investigations Report" (PDF), Web applications were the way in for roughly 70% of all ...
Dark Reading

How to Tame SQL Injection

For more than a decade, injection vulnerabilities have literally topped the charts of critically dangerous software flaws, deemed more serious than all other types of vulnerabilities in the 2010, 2013 ...