Web Apps

Strengthen your web applications with tutorials and tips from the Raxis penetration testing team. Find insights to uncover and fix vulnerabilities.

the exploit blog logo
The Exploit: Penetration Testing Insights From The Frontlines

Articles Categorized as Web Apps

  • HTTP/1.1 Security News: What You Can Do Now
    ,

    HTTP/1.1 Security News: What You Can Do Now

     By Jason Taylor A recent Portswigger white paper on HTTP/1.1 highlights critical security issues. If you use old products that still require it, here’s what you can do. September 16, 2025
  • Dangers of Storing Sensitive Data in Web Storage: 5 Real Attack Scenarios
    , , ,

    Dangers of Storing Sensitive Data in Web Storage: 5 Real Attack Scenarios

     By Ryan Chaplin Lead Penetration Tester Ryan Chaplin walks us through 5 real-world attack scenarios used in real-world penetration tests by Raxis. August 26, 2025
  • OWASP Top 10 for LLM Applications
    , , ,

    OWASP Top 10 for LLM Applications Penetration Testing

     By Jason Taylor Lead Penetration Tester Jason Taylor looks at OWASP’s Top 10 list for LLM applications for penetration testing as AI machine learning becomes prevalent. July 15, 2025
  • OWASP Top 10
    ,

    OWASP Top 10: The Bedrock of an Application Penetration Test

     By Adam Fernandez When performing web app, mobile app, and API penetration tests, we refer to the OWASP Top 10. Here we’ll discuss what that means and why it’s helpful. April 23, 2024
  • Submit Button
    , , ,

    Hackers See Opportunity Where You See Only a Button

     By Brad Herring In this post, Raxis VP Brad Herring explains how web proxy tools can turn even simple buttons and check-boxes into avenues for an attack. April 1, 2022
  • Web App Testing: Part Two

    What is Web App Pentesting? (Part Two)

     By Raxis Research Team Lead penetration tester Matt Dunn continues his discussion about web application testing. In Part Two, Matt explains testing as an authenticated user vs. as an unauthenticated user. March 4, 2022