They dropped Open Redirection from the OWASP Top 10 but, like CSRF, it is still out there. Here is a...
Read More
The Enterprise Security API for Java went to 2.2.1.0
https://github.com/ESAPI/esapi-java-legacy/blob...
Read More
Big news this week was the F5 zero day, of course, but on the application side you should review the...
Read More
Happy Independence Day for my US readers!
BugCrowd released a really cool looking Burp extens...
Read More