In 2023, there are more resources to learn new skills and progress than ever. However, this industry is also moving and growing rapidly, and more isn’t necessarily better. The phrase “drinking from a fire hose” comes to mind. Today we’re going to be looking at a path...
Broken Object Level Authorization (BOLA) is a vulnerability that occurs when an application fails to enforce access controls on sensitive data or resources. BOLA is important to understand and test for as it has been the most common and impactful vulnerability across...
What is Mass Assignment? Mass assignment is a feature, and it makes our lives easier when trying to map input passed from the front end to the back end. By automatically assigning values to the properties of an object, we save some time in development and gain some...
The once-a-year pentest is commonplace for many organizations, however, is this a suitable timeframe, a minimum to meet compliance requirements, or somehow an accurate guess at the optimum interval? Let’s take a look at the factors we should consider and also at the...
