Web Security Blog

What we learned about API discovery from comparing runtime and edge views

Thu, 21 Aug 2025

As a CISO, my litmus test for API discovery is simple: does it find the endpoints that matter for security work we can act on? Will it give my team a clean list of testable items? To pressure-test the discovery features on the Invicti Platform and see how it stacks up, we ran an informal benchmark within our AppSec team.

Read more

What is the difference between a vulnerability scan and a port scan?

Wed, 16 Apr 2025

The DAST-first mindset: A CISO’s perspective

Tue, 08 Apr 2025

Software and data integrity failures: An OWASP Top 10 risk

Mon, 07 Apr 2025

Vulnerability scanner vs. SIEM: Key differences & how DAST bridges the gap

Fri, 04 Apr 2025

What is the best vulnerability scanning tool?

Thu, 03 Apr 2025

Meet the future of AppSec: DAST-first application security

Wed, 02 Apr 2025

Understanding web vulnerability scanners

Tue, 01 Apr 2025

Broken access control: The leading OWASP Top 10 security risk

Fri, 28 Mar 2025

Vulnerable and outdated components: An OWASP Top 10 threat

Tue, 25 Mar 2025

Top 10 dynamic application security testing (DAST) tools for 2025

Wed, 19 Mar 2025

Vulnerable test sites to test your XSS skills: Hands-on AppSec

Fri, 14 Mar 2025

Components of dynamic application security testing

Thu, 13 Mar 2025