Sprocket Security | Web App Assessments

Web App Assessments Resources

Web App Assessments

Latest Web App Assessments Resources

Application Security Testing (AST): Technologies and Best Practices
Nov 27, 2024 6 min read

Application Security Testing (AST): Technologies and Best Practices

Application security testing involves analyzing and evaluating software applications to identify vulnerabilities.
READ MORE
7 Types of Web Application Testing and Building a Testing Strategy
Nov 12, 2024 6 min read

7 Types of Web Application Testing and Building a Testing Strategy

Web application testing involves evaluating an application to ensure its functionality, security, and usability meet the required standards before deployment.
READ MORE
WebQL: Using CodeQL To Conduct JavaScript Security Analysis Against Modern Web Applications
Sep 23, 2024 11 min read

WebQL: Using CodeQL To Conduct JavaScript Security Analysis Against Modern Web Applications

Introducing WebQL, an automated JavaScript analysis tool that leverages CodeQL to identify and exploit vulnerabilities in modern web applications like SPAs and PWAs. By automating the extraction, beautification, and analysis of client-side code, WebQL enhances penetration testing by uncovering security issues obscured by modern development practices.
READ MORE
Introducing Security Testing in QA
Jan 10, 2024 5 min read

Introducing Security Testing in QA

Fixing these vulnerabilities in production is more expensive than finding and fixing them earlier in the SDLC. One way that organizations can drive down the cost of vulnerability management is by integrating security testing into software quality assurance (QA) testing.
READ MORE
Surfacing the Invisible: A Guide to Web Application Attack Surface Management
Dec 05, 2023 7 min read

Surfacing the Invisible: A Guide to Web Application Attack Surface Management

The top five web application-specific attack surface management opportunities Sprocket Security sees regularly.
READ MORE
Discovering wp-admin.php URLs in Wordpress With GravityForms
Apr 05, 2023 5 min read

Discovering wp-admin.php URLs in Wordpress With GravityForms

By targeting a specific endpoint and passing in a random string, GravityForms will prompt users to authenticate first. This results in the unauthenticated user being redirected to the obscured administrative login page for /wp-admin.
READ MORE
1 2 »