Web App Assessments

Web App Assessments Resources

Web App Assessments

Latest Web App Assessments Resources

Application Security Testing (AST): Technologies and Best Practices
Nov 27, 2024 Sprocket Security

Application Security Testing (AST): Technologies and Best Practices

Application security testing involves analyzing and evaluating software applications to identify vulnerabilities.
7 Types of Web Application Testing and Building a Testing Strategy
Nov 12, 2024 Sprocket Security

7 Types of Web Application Testing and Building a Testing Strategy

Web application testing involves evaluating an application to ensure its functionality, security, and usability meet the required standards before deployment.
WebQL: Using CodeQL To Conduct JavaScript Security Analysis Against Modern Web Applications
Sep 23, 2024 Nate Fair

WebQL: Using CodeQL To Conduct JavaScript Security Analysis Against Modern Web Applications

Introducing WebQL, an automated JavaScript analysis tool that leverages CodeQL to identify and exploit vulnerabilities in modern web applications like SPAs and PWAs. By automating the extraction, beautification, and analysis of client-side code, WebQL enhances penetration testing by uncovering security issues obscured by modern development practices.
Introducing Security Testing in QA
Jan 10, 2024 Sprocket Security

Introducing Security Testing in QA

Fixing these vulnerabilities in production is more expensive than finding and fixing them earlier in the SDLC. One way that organizations can drive down the cost of vulnerability management is by integrating security testing into software quality assurance (QA) testing.
Surfacing the Invisible: A Guide to Web Application Attack Surface Management
Dec 05, 2023 Will Vandevanter

Surfacing the Invisible: A Guide to Web Application Attack Surface Management

The top five web application-specific attack surface management opportunities Sprocket Security sees regularly.
Discovering wp-admin.php URLs in Wordpress With GravityForms
Apr 05, 2023 Juan Pablo Gomez Postigo

Discovering wp-admin.php URLs in Wordpress With GravityForms

By targeting a specific endpoint and passing in a random string, GravityForms will prompt users to authenticate first. This results in the unauthenticated user being redirected to the obscured administrative login page for /wp-admin.
1 2 »