Web Security Blog

About the Author

Zbigniew Banach - Technical Content Lead & Managing Editor

Cybersecurity writer and blog managing editor at Invicti Security. Drawing on years of experience with security, software development, content creation, journalism, and technical translation, he does his best to bring web application security and cybersecurity in general to a wider audience.

MORE FROM THIS AUTHOR

Invicti Security

Vibe talking: Dan Murphy on the promises, pitfalls, and insecurities of vibe coding

Thu, 15 May 2025

Guide to cryptographic failures: A 2025 OWASP Top 10 threat

Thu, 15 May 2025

Preventing cross-site scripting (XSS) in Java applications

Mon, 12 May 2025

SQL injection prevention cheat sheet

Mon, 12 May 2025

Is React vulnerable to XSS?

Thu, 01 May 2025

What your vulnerability scanner won’t find: Limitations of automated testing

Wed, 30 Apr 2025

What is the root cause of SQL injection?

Mon, 28 Apr 2025

What is the best vulnerability scanning tool?

Thu, 03 Apr 2025

Top 10 dynamic application security testing (DAST) tools for 2025

Wed, 19 Mar 2025

Components of dynamic application security testing

Thu, 13 Mar 2025

Missing X-Frame-Options header? You should be using CSP anyway

Fri, 07 Mar 2025

Missing HTTP security headers: Avoidable risk, easy fix

Thu, 20 Feb 2025