Understanding the OWASP Top 10 for 2025
The Open Web Application Security Project (OWASP) has updated its essential list of the most critical web application security risks with its 2025 edition. This new list reflects how the…
OWASP AI Testing Guide
The OWASP AI Testing Guide provides a comprehensive security testing framework for AI/ML systems. As AI adoption grows, so do risks like adversarial inputs, model theft, and data misuse. This…
OWASP Unveils Top 10 Smart Contract Vulnerabilities
Background The Open Web Application Security Project (OWASP) is a non-profit foundation that works to improve software security. OWASP's initiatives and projects provide developers and security professionals with free tools,…
Posted inSecurity
Path Traversal flaw in OWASP ESPI
The Open Web Application Security Project (OWASP) has fixed a critical vulnerability in its Enterprise Security API (ESAPI) whose exploitation could have allowed threat actors to run path traversal attacks.…
GoTestWAF An Open Source AppSec tool
GoTestWAF is a tool for API and OWASP attack simulation that supports a wide range of API protocols including REST, GraphQL, gRPC, WebSockets, SOAP, XMLRPC, etc. It was designed to…
AppSec Tools NonSync With API Security
Softwares kept decorating day to day life of humans in any one form of mobile or web platforms. Attackers have increasingly exploiting these applications, and defenders have adopted various testing…
OWASP Web Application Risk 2021 – Top 10
OWASP has released its draft Top 10 Web Application Security Risks 2021 list with a number of changes from the 2017 list. The list has been maintained by OWASP since…
Posted inCyberAttack
Owasp Top 10 IoT Vulnerabilities
IoT devices are now the norm, rather than a novelty. The average household has more than ten connected devices, and there are currently about ten billion IoT devices worldwide. And…