Web Apps

Blog Archive Category

the exploit blog logo
The Exploit: Penetration Testing Insights From The Frontlines

The Exploit articles categorized as Web Apps

  • Dangers of Storing Sensitive Data in Web Storage: 5 Real Attack Scenarios
    , , ,

    Dangers of Storing Sensitive Data in Web Storage: 5 Real Attack Scenarios

     By Ryan Chaplin Lead Penetration Tester Ryan Chaplin walks us through 5 real-world attack scenarios used in real-world penetration tests by Raxis. August 26, 2025
  • OWASP Top 10 for LLM Applications
    , , ,

    OWASP Top 10 for LLM Applications Penetration Testing

     By Jason Taylor Lead Penetration Tester Jason Taylor looks at OWASP’s Top 10 list for LLM applications for penetration testing as AI machine learning becomes prevalent. July 15, 2025
  • OWASP Top 10
    ,

    OWASP Top 10: The Bedrock of an Application Penetration Test

     By Adam Fernandez When performing web app, mobile app, and API penetration tests, we refer to the OWASP Top 10. Here we’ll discuss what that means and why it’s helpful. April 23, 2024
  • Submit Button
    , , ,

    Hackers See Opportunity Where You See Only a Button

     By Brad Herring In this post, Raxis VP Brad Herring explains how web proxy tools can turn even simple buttons and check-boxes into avenues for an attack. April 1, 2022
  • Web App Testing: Part Two

    What is Web App Pentesting? (Part Two)

     By Raxis Research Team Lead penetration tester Matt Dunn continues his discussion about web application testing. In Part Two, Matt explains testing as an authenticated user vs. as an unauthenticated user. March 4, 2022
  • Web App Testing: Part One

    What is Web Application Penetration Testing?

     By Raxis Research Team Learn how Raxis approaches web application testing and how it differs from network penetration testing. Lead penetration tester Matt Dunn explains in this post. February 18, 2022