owasp-top-ten – Page 2 – WindowsTechs.com

Blind XXE – Exfiltration Data via OOB

Posted on March 1, 2021 by Zefiro38

My lab

Kali Linux:192.168.171.134
bWApp Server: http://192.168.171.131

I want to do an exfiltration data via HTTP on this Blind XXE.
I’ll use the Portswigger Payload.
This is the External.DTD:

<!ENTITY % eval "<!ENTITY &a… Continue reading Blind XXE – Exfiltration Data via OOB→

As an application developer in Java and JavaScript what would i probably never get from a platform as security out of the box?

Posted on November 18, 2020 by Pablo

I need to comply with OWASP top 10 and i am searching for the best platform to code on -as developer- on AWS or GCP what would be my share of security to do (test cases…) or security feature that i will always need to code in complete o… Continue reading As an application developer in Java and JavaScript what would i probably never get from a platform as security out of the box?→

OWASP session token in url azure b2c

Posted on November 3, 2020 by Jake Smith

Crawling and auditing the traffic using the Burp Suite, our Angular application was flagged for the following:
OWASP Top 10 Classification – Broken authentication and session management – Sensitive data exposure
I was able to grab the toke… Continue reading OWASP session token in url azure b2c→

OWASP session token in url azure b2c

Posted on November 3, 2020 by Jake Smith

Prevent XXE attack by preprocessing XML

Posted on June 14, 2020 by John Donn

I have an old project which parses XML files coming from an external origin, so it is at least in principle vulnerable to XXE.

It is difficult to update the project to use newer versions of XML libraries, which can be configured to preven… Continue reading Prevent XXE attack by preprocessing XML→

Does OWASP’s top 10 list cover the majority of potential web application vulnerabilities?

Posted on June 9, 2020 by Scinerio

I ask this question because there is a common compliance argument that performing an “OWASP Top 10” scan provides enough coverage to consider it an “in-depth” scan. Is this the case, or are organizations implementing a minimal level of sca… Continue reading Does OWASP’s top 10 list cover the majority of potential web application vulnerabilities?→

Exploitation of client_id in OAuth

Posted on April 26, 2020 by user233194

We have a web app where the back end is composed of APIs. We use OAuth to authorize the web app’s call to the APIs. We all know that in OAuth, there is always the Authorization endpoint used to get the Authorization code, which in turn is … Continue reading Exploitation of client_id in OAuth→

Preventing automated attacks on Tokens without relying on Firewall or Network Infrastructure

Posted on March 20, 2020 by user229317

Our concern is more on application side prevention automated attacks. Although the firewall does it part to help prevent this, it has been mandated in our development team’s security practices that we need a 2nd level of protection. Soluti… Continue reading Preventing automated attacks on Tokens without relying on Firewall or Network Infrastructure→

How exactly works this SQL injection example related to the DVWA application?

Posted on November 10, 2019 by AndreaNobili

I am a software developer converting do application security and I have some doubts about SQL injection example.

I am following a tutorial related the famous DVWA: http://www.dvwa.co.uk/

So I have the following doubt (proba… Continue reading How exactly works this SQL injection example related to the DVWA application?→

JWT(Json Web Token) Tampering

Posted on September 18, 2019 by Bruno Mazzardo

I’m reading OWASP Top 10 – 2017
The Ten Most Critical Web Application Security Risks, and came across the following risk, under Broken Access Control vulnerabilities:

Metadata manipulation, such as replaying or tampering with a JSON We… Continue reading JWT(Json Web Token) Tampering→