Web Security Blog

The risks of doing vulnerability testing and management for compliance only

Wed, 28 May 2025

In this instalment of CISO’s Corner, we deal with the pitfalls of mistaking compliance for security and see how adopting a risk-based mindset helps you stay secure in the real world while still checking all the right boxes.

Read more

Real-Life Vulnerabilities Reported by Invicti

Thu, 30 Apr 2020

How to Scan REST APIs and Web Services with Invicti

Fri, 24 Apr 2020

How to Measure Time to Value in Web Application Security

Fri, 17 Apr 2020

What is cross-site request forgery?

Wed, 15 Apr 2020

XML External Entity (XXE) Injection Attack and Prevention

Fri, 03 Apr 2020

Cybersecurity During the COVID-19 Pandemic

Mon, 30 Mar 2020

Content Security Policy (CSP): Directives, examples, fixes

Wed, 05 Mar 2025

What is LDAP Injection and How to Prevent It

Fri, 13 Mar 2020

How to Define Cybersecurity Metrics for Web Applications

Fri, 06 Mar 2020

Can vulnerability scanning replace penetration testing?

Fri, 28 Feb 2020

What is Blind SQL Injection?

Fri, 21 Feb 2020