owasp-top-ten – Page 3 – WindowsTechs.com

JWT(Json Web Token) Tampering

Posted on September 18, 2019 by Bruno Mazzardo

I’m reading OWASP Top 10 – 2017
The Ten Most Critical Web Application Security Risks, and came across the following risk, under Broken Access Control vulnerabilities:

Metadata manipulation, such as replaying or tampering with a JSON We… Continue reading JWT(Json Web Token) Tampering→

Is it really Security Misconfiguration to show a version number?

Posted on August 13, 2019 by stormtrooper

Our web application uses a HTML file with jQuery embedded inside.
According to the jQuery license (https://jquery.org/license/), we have to leave the license header intact, including the version number.

Our client reported e… Continue reading Is it really Security Misconfiguration to show a version number?→

Unsafe deserialization from JSON

Posted on June 11, 2019 by Meir Maor

Seeking any example of exploitable unsafe deserialiazation where the serialized format is json and not some binary format.

Even better would be an example where calling a Java constructor of an arbitrary class(in some commo… Continue reading Unsafe deserialization from JSON→

What is the difference between "Broken Access Control" and "Broken Authentication" [on hold]

Posted on May 2, 2019 by saketh

I have tried to find the difference between “A5:2017 Broken Access Control” and “A2:2017 Broken Authentication” but those are confusing. Both are somewhat similar.

What does “Broken Access Control” and “Broken Authentication… Continue reading What is the difference between "Broken Access Control" and "Broken Authentication" [on hold]→

Why OWASP considers TouchID as insecure?

Posted on April 18, 2019 by cngkaygusuz

As could be reviewed in 1 under Am I Vulnerable… section, OWASP page states that

If the mobile app uses a feature like TouchID, it suffers from insecure authentication.

The reasons for this are not obvious though. Why… Continue reading Why OWASP considers TouchID as insecure?→

Add CSRF tokens to form tags automatically- Spring

Posted on December 17, 2018 by security guy

In Spring framework, is there a way to add a CSRF token to all the form tags automatically? maybe using [1] or some other way but not using a custom form tag that would insert the CSRF token when its manually used instead of … Continue reading Add CSRF tokens to form tags automatically- Spring→

Why does Google not count open redirects as a security vulnerability?

Posted on December 7, 2018 by CoderPE

I was surprised to learn that Google does not count open redirects as a vulnerability and it isn’t valid for their bug bounty program. Open redirects exploit the trust between a company (Google in this case) and its users, th… Continue reading Why does Google not count open redirects as a security vulnerability?→

Origin Header Vs Token based mitigation

Posted on August 10, 2018 by security guy

OWASP CSRF Prevention cheatsheet talks about two popular mitigations for CSRF – Origin/Referrer header check and Token based.

Are there any issues Origin/referrer check based mitigation that could have been caught by token b… Continue reading Origin Header Vs Token based mitigation→

Insecure Deserialization in C# (.NET) – How to identify and test

Posted on July 11, 2018 by Ogglas

I have been reading up on Insecure Deserialization and how it can affect Java applications.

https://owasp.org/index.php/Top_10-2017_A8-Insecure_Deserialization

If the captured traffic data include the following patterns it… Continue reading Insecure Deserialization in C# (.NET) – How to identify and test→

Understanding OWASP 2017 A8 Insecure Deserialization

Posted on July 11, 2018 by Ogglas

I’m reading up on Insecure Deserialization and remembered a vulnerability that I read about in some JSON Web Token (JWT) implementations at auth0.

https://owasp.org/index.php/Top_10-2017_A8-Insecure_Deserialization

https:… Continue reading Understanding OWASP 2017 A8 Insecure Deserialization→