Web App

Blog Archive Tag

the exploit blog logo
The Exploit: Penetration Testing Insights From The Frontlines
Web App
  • OWASP Top 10
    ,

    OWASP Top 10 for 2025: What’s New in Web Application Security

     By Raxis Research Team The OWASP Top 10 2025 for web applications release candidate was released last week. Take a look at which categories have moved as well as one new category. November 20, 2025
  • OWASP Top 10 for LLM Applications
    , , ,

    OWASP Top 10 for LLM Applications Penetration Testing

     By Jason Taylor Lead Penetration Tester Jason Taylor looks at OWASP’s Top 10 list for LLM applications for penetration testing as AI machine learning becomes prevalent. July 15, 2025
  • OWASP Top 10
    ,

    OWASP Top 10: The Bedrock of an Application Penetration Test

     By Adam Fernandez When performing web app, mobile app, and API penetration tests, we refer to the OWASP Top 10. Here we’ll discuss what that means and why it’s helpful. April 23, 2024
  • SQL Injection
    , ,

    SQLi Series: An Introduction to SQL Injection for Penetration Testing

     By Andrew Trexler Raxis’ Andrew Trexler explains what SQL Injection (SQLi) is and how to perform a simple exploit against a web app login page in penetration tests. April 9, 2024
  • Simultaneous Sessions

    Why We Take Simultaneous Sessions Seriously on Penetration Tests

     By Raxis Research Team Raxis Lead Penetration Tester Matt Dunn explains why you simultaneous sessions is a significant finding on a penetration test. April 8, 2022
  • Web App Testing: Part Two

    What is Web App Pentesting? (Part Two)

     By Raxis Research Team Lead penetration tester Matt Dunn continues his discussion about web application testing. In Part Two, Matt explains testing as an authenticated user vs. as an unauthenticated user. March 4, 2022