Introduction to Cross-Site Scripting
Introduction to Cross-Site Scripting

Raxis lead penetration tester Matt Dunn explains cross-site scripting and how it can be used[…]

2021 OWASP Top 10
OWASP Top 10: Broken Access Control

In this blog post, Raxis lead penetration tester Mark Fabian discusses broken access control and[…]

2021 OWASP Top 10
2021 OWASP Top 10 Focus: Injection Attacks

The latest draft of the OWASP Top 10 has been released. Though injection is now[…]

Web Attacks: Insecure Transmission of Data
Web Attacks: Insecure Transmission of Data

Raxis COO Bonnie Smyre discusses the vulnerabilities that arise when web apps transmit data insecurely[…]

Web Attacks: Clickjacking
Web Attacks: Clickjacking

Many of the external network and web application penetration tests that we perform list ‘clickjacking'[…]