Web App Security | OffSec

Blog

Web App Security

Web application security best practices, recent developments, research and everything related to OffSec web app security content.
Web App Security

Oct 21, 2022

8 min read

See Yourself in Cyber with OffSec: Web Application Security

As part of Cybersecurity Awareness Month 2022, we share a complete guide to starting a career in web application security with insight into career outlook, essential skills, and much more.

Read more
WEKAN AUTHENTICATION BYPASS – EXPLOITING COMMON PITFALLS OF METEORJS

Web App Security

Wekan Authentication Bypass – Exploiting Common Pitfalls of MeteorJS

In this post, Dejan walks us through an authentication bypass vulnerability discovered in Wekan and reported by Offensive Security.

Sep 8, 2020

14 min read

Advanced Web Attacks and Exploitation Updated! FAQs

Web App Security

AWAE Frequently Asked Questions

The Advanced Web Attacks and Exploitation (AWAE) course has been updated for 2020. Get your questions about AWAE and OSWE answered.

Jul 20, 2020

8 min read

Advanced Web Attacks and Exploitation Updated!

Web App Security

AWAE: Updated with More Content for 2020

The Advanced Web Attacks and Exploitation (AWAE) course has been updated for 2020. Learn what changed, why we did it, and how it will help you.

Jul 14, 2020

3 min read

mihai-awae-review

Web App Security

Offensive Security AWAE/OSWE Review

In this post Mihai gives us a review of his experience with the Advanced Web Attacks And Exploitation course after obtaining his OSWE certification.

Jul 7, 2020

6 min read

AWAE: WHAT YOU NEED TO KNOW

Web App Security

Offensive Security Advanced Web Attacks and Exploitation (AWAE): What You Need To Know

What do you need to know before taking Advanced Web Attacks and Exploitation (AWAE)? OSCP holder and penetration tester Samuel Whang shares his perspective.

Jun 16, 2020

4 min read

WHITE BOX WEB APPLICATION PENTESTING

Web App Security

White Box Testing for Web Applications

How can source code review help penetration testers with web application security assessments? Learn the benefits of white box web app penetration testing.

Apr 28, 2020

0xklaue

Web App Security

Attacking the Web: The Offensive Security Way

OffSec student 0xklaue wrote this review of Advanced Web Attacks and Exploitation and the OSWE exam. Find out how to prepare and what you need to know.

Mar 24, 2020

8 min read

Web App Fundamentals

Web App Security

Understanding the Fundamentals of Securing Web Applications

Web application security can be a rewarding career path. However, the web application security space, and cybersecurity industry as a whole, lives in a constant state of change. An unrelenting curiosity and passion for lifelong learning is mandatory for anyone seeking to specialize in this niche. Here are some fundamentals to help you pursue these skills.

Oct 8, 2019

7 min read