Collaborate Disseminate
At Invicti, we are absolutely thrilled to be recognized for the first time in the Magic Quadrant for Application Security Testing this year. Gartner is a leading IT research and advisory firm that helps businesses of all sizes evaluate technology and m… Continue reading Invicti recognized on the 2021 Gartner Magic Quadrant for Application Security Testing
“Netsparker is the best web application scanner we know of: It’s affordably priced as a tier two scanner, but it is as accurate as a tier one scanner or better. And it has the lowest false positive rate we ever saw in the last 14 years with competing … Continue reading Italy’s Most Experienced Information Security Company Relies on Netsparker
One of the oldest clichés in web application security is that, “It doesn’t matter which framework you choose, if you know what you’re doing”. In my experienced opinion, off the back of a career in the web security industry, this notion is complete… Continue reading Why Framework Choice Matters in Web Application Security
Table Of Contents
What is HTML Escaping
html_safe and Introduction to Safe Buffers
Transferring Data from Rails to HTML
Transferring Data from Rails to JavaScript
Transferring JSON Data to HTML/JavaScript
Final Notes
Cross-site scripting … Continue reading Preventing Cross-site Scripting Vulnerabilities When Developing Ruby on Rails Web Applications
2016 was a great year for Netsparker. We were the first (and only) web security scanner vendor to introduce a number of cutting-edge technologies that make it possible to effortlessly scan 100s and 1000s of websites, without the need to spend hour… Continue reading Netsparker’s 2016 in Review
What is a SQL Injection Vulnerability?
SQL Injection is a web application vulnerability that occurs when untrusted data is inserted in a SQL query without any sanitization or escaping. Since databases play a core role in today’s web applications, being… Continue reading SQL Injection Prevention Techniques for Ruby on Rails Web Applications