Web Security Blog

Strengthening enterprise application security: Invicti acquires Kondukto

Thu, 14 Aug 2025

We are excited to announce our acquisition of Kondukto, a leading application security posture management (ASPM) platform that perfectly complements our web application security testing capabilities.

Read more

Linux vulnerability scanner

Wed, 21 May 2025

Guide to XSS in Angular: Examples and prevention

Tue, 20 May 2025

Invicti Security

Vibe talking: Dan Murphy on the promises, pitfalls, and insecurities of vibe coding

Thu, 15 May 2025

Guide to cryptographic failures: A 2025 OWASP Top 10 threat

Thu, 15 May 2025

What are the three types of penetration tests?

Wed, 14 May 2025

How do I know if an API is secure?

Tue, 13 May 2025

Preventing cross-site scripting (XSS) in Java applications

Mon, 12 May 2025

SQL injection prevention cheat sheet

Mon, 12 May 2025

Webhook security best practices and checklist

Wed, 07 May 2025

WebSocket security best practices and checklist

Wed, 07 May 2025

Security logging and monitoring failures: An OWASP Top 10 risk

Tue, 06 May 2025

What is the difference between XSS and CSRF?

Tue, 06 May 2025