Bleeping Computer

Traditional Pen Testing vs. PTaaS with Web Application Security

While traditional penetration testing (pen testing) has long been the go-to method for identifying security gaps in a organization’s network and web application, a new approach has emerged: ...
Bleeping Computer

The OWASP Top 10: What They Are and How to Test Them

Web applications often handle vast amounts of data, from personal user details to sensitive corporate information. As these applications grow in complexity and importance, they also become primary ...
Linux Journal

Web Application Security Testing with Samurai

Almost every week the media picks up on another case of sensitive data being retrieved from Web sites with bad security. Web application security never has been more important, yet many Web sites ...
Computerworld

Web application security and Sarbanes-Oxley compliance

Achieving Sarbanes-Oxley (SOX) compliance is not impossible, but there are a few key elements beyond ethical leadership that are necessary to achieve and maintain it. Public corporations must ...
CSOonline

10 penetration testing tools the pros use

Penetration testing, or pentesting, times have certainly changed. Years ago, when this speciality in offensive security was taking off, there was a large shift away from manual techniques to relying ...
CSOonline

Attention, CISOs: Strategy is the only security

According to the 2013 Chief Information Security Officers survey by the Open Web Application Security Project (OWASP), 75 percent of CISOs responded that external attacks had increased. When asked ...