What is an Open Redirect Vulnerability? An Open Redirect Vulnerability entails an attacker manipulating the user and redirecting them from one site to another site
What is a WebSocket? WebSockets are becoming increasingly popular, because they greatly simplify the communication between a client and a server. The WebSocket protocol uses
The SolarWinds attack was one of the largest nation-state supply chain attacks we have seen to date. The attack originated from SolarWinds’ Orion network management
What is PHP SQL Injection? When an attacker exploits a PHP application via an SQL Injection, they can gain access to the application’s database and
What is an LFI Attack? Local File Inclusion attacks are used by attackers to trick a web application into running or exposing files on a
This blog post announces the June 2021 Update for Bright.We added some new features and product enhancements that will make your experience even better. New
What is Dynamic Application Security Testing (DAST)? Dynamic Application Security Testing (DAST) is an Application Security Testing methodology in which the application is tested in
XML External Entity Injection (XXE) is one of the most common vulnerabilities. At its core, it’s a web security vulnerability where attackers target and compromise
What is Cross-Site Request Forgery Test? Cross-Site Request Forgery (CSRF) testing is the procedure of finding and remediating CSRF vulnerabilities in web applications. A CSRF
The days where security testing is carried out in a penetration test by your security team or a third party firm, are increasingly becoming a
In this article we will cover: What are File Inclusion Vulnerabilities? Types of file inclusion vulnerabilities Local File Inclusion (LFI) Local File Inclusion (LFI) Example
What is Cross-Site Scripting Prevention? Cross-site scripting prevention is the process of detecting and remediating XSS vulnerabilities in your websites or web applications before they
Learn what is the purpose of SOAP APIs, how they function, the main difference between REST and SOAP APIs, and what you can do to
Both CSRF and XSS are client side attacks. What else do they have in common and what is the difference between them? Learn the answer
CSRF (Cross Site Request Forgery) tokens can be a great mechanism in preventing CSRF attacks, but what are they? How do they protect against CSRF
© 2022 Bright Security Inc. All Rights Reserved
