Web Security Blog

Invicti Security

What is ASPM, or application security posture management?

Tue, 17 Jun 2025

ASPM tools promise a unified view of application security by aggregating data from testing tools like DAST, SAST, and SCA—but they don’t generate insights on their own. This post breaks down how ASPM works, where it adds value, and how a DAST-first platform like Invicti can offer many of the same capabilities but with validated and actionable results from its own security testing.

Read more

Why web asset discovery is a crucial part of your AppSec program

Wed, 22 Sep 2021

The new OWASP Top 10 is not what you think

Wed, 15 Sep 2021

The pitfalls of DIY application security

Fri, 03 Sep 2021

What to look for in a DAST solution

Fri, 27 Aug 2021

Serious about web application security? Look both ways as you shift left

Fri, 13 Aug 2021

What is privilege escalation and why is it important?

Fri, 06 Aug 2021

Are you still paying consultants to do your vulnerability scanning?

Fri, 30 Jul 2021

What is a cross-site scripting vulnerability?

Wed, 28 Jul 2021

Behind the jargon: False negatives in application security

Tue, 20 Jul 2021

Understanding session fixation attacks

Fri, 16 Jul 2021

Why DAST is the perfect fit for agile software projects

Tue, 13 Jul 2021

JSON Web Token attacks and vulnerabilities

Fri, 02 Jul 2021