Web Security Blog

The risks of doing vulnerability testing and management for compliance only

Wed, 28 May 2025

In this instalment of CISO’s Corner, we deal with the pitfalls of mistaking compliance for security and see how adopting a risk-based mindset helps you stay secure in the real world while still checking all the right boxes.

Read more

End of Support for PHP 5 and PHP 7.0

Tue, 18 Dec 2018

Tabnabbing Protection Bypass

Thu, 06 Dec 2018

Bypassing disabled system functions

Tue, 04 Dec 2018

Fragmented SQL Injection Attacks – The Solution

Thu, 29 Nov 2018

Exposing the Public IPs of Tor Services Through SSL Certificates

Tue, 27 Nov 2018

Web Browser Address Bar Spoofing

Tue, 20 Nov 2018

PHP Wrappers, Streams & Local File Intrusion (LFI)

Wed, 14 Nov 2018

Using Google bots as an attack vector

Thu, 08 Nov 2018

The dangers of incorrect CSP implementations

Tue, 06 Nov 2018

Pros and Cons of DNS Over HTTPS

Thu, 01 Nov 2018

Netsparker’s Web Security Scan Statistics for 2018

Thu, 25 Oct 2018

The Dangers of Open Git Folders

Thu, 18 Oct 2018