⇓ Get Latest Updates ⇓

Enter your email address:



Check email in your inbox for confirmation to get latest updates Software Testing for free.

⇓ Categories ⇓

Netsparker Web Application Security Scanner

Choosing the Right Web Security Scanner

In today’s tutorial, we are talking how to choose right Web Security Scanner.

You may interested in Security Testing topics.

********

Why do I Need a Web Security Scanner?

A web security scanner is a software that is designed to crawl across your websites, web applications, API endpoints, and more, and test for various kinds of known and unknown security vulnerabilities. In fact, web security scanners perform the same function as reconnaissance scans performed by attackers every day, looking for

Continue reading…

Interviewing a Testing Expert - Ziyahan Albeniz

Yes I know, since long time I have not published any of my Testing Interview with professionals from around the globe. So I’m again back with the testing interview, and this time I’ll be interviewing Ziyahan Albeniz from Netsparker.

 

BIO:

Ziyahan Albeniz is an experienced Security Researcher who started as a QA Engineer at Netsparker. At Netsparker he worked his way up to be the Security Team Lead. He graduated in Computer Programming from Sakarya University in Istanbul. He

Continue reading…

How a Web Application Security Scanner can Help to Reduce Your Development Costs

A quick search on Google will reveal plenty of posts that deal specifically with the importance of scanning your web application and eliminating all vulnerabilities. An approach that strikes the appropriate balance between automated security scanning and manual testing using a skilled penetration tester is usually considered to be the best option.

Experience usually demonstrates that a combination of these two methods results in the most efficient way to find and eliminate both technical and logical vulnerabilities.

On the topic

Continue reading…

Source Code Audit or Automated Web Application Vulnerability Scan?

Scanning for Web Application Vulnerabilities versus Static Source Code Audits: Choosing the Most Appropriate Solution

There are quite a few terms floating around the web application security space and sometimes it can be challenging to understand exactly what a specific term means and how it might relate to similar terms.

One such example that we were asked about recently was the term “source code audit”. We thought we’d provide an overview of what exactly a source code audit is and

Continue reading…

The Challenges of Scaling Up Web Vulnerability Scanning

In today’s class we are talking about one of the interesting security testing topic “The Challenges of Scaling Up Web Vulnerability Scanning“.

*************

For SMBs (Small and Mid-size Businesses) and Large Enterprises alike, one of the most challenging aspects of managing IT involves deciding how to effectively scale up web application security. Many businesses are inadvertently finding themselves in the software and application business as they attempt to meet the needs of their customers. As a result, they’re faced with

Continue reading…

Understand SQL Injection Better with the SQL Injection Cheat Sheet

Today we are going to learn What is SQL injection and cheat sheet to better understand of it.

On the web page when SQL is used to display data, then most of the time it allow user to enter the search criteria. The SQL queries on written in text format and easy to change in the code based on the entered search criteria by user. SQL injection is a technique used to inject malicious SQL statements to data-driven application for

Continue reading…