Puja – WindowsTechs.com

Can results from DAST (Dynamic Application Security Testing) tools be false positive?

Posted on May 9, 2018 by Puja

I know results from Static Application Security Testing (SAST) can be false positives or real and it is up to the security analyst and developer to decide which vulnerability is real based on the scenario and context.

Is the… Continue reading Can results from DAST (Dynamic Application Security Testing) tools be false positive?→

What is the relationship between HTTP response codes and successful execution of XSS attacks?

Posted on May 9, 2018 by Puja

What is the relationship between HTTP response codes and successful execution of XSS attacks? For e.g I am using a commercial vulnerability scanner that reports XSS vulnerability found in a certain web page. It further descri… Continue reading What is the relationship between HTTP response codes and successful execution of XSS attacks?→