Archive for: April 2023

API Secure Coding Patterns: Best Practices for Robust and Secure APIs

26 April 2023 - Posted in API by The XSS Rat

Introduction Application Programming Interfaces (APIs) have become an integral part of modern software development. They enable communication between different software components, simplify the

CWEs every pentester should know

23 April 2023 - Posted in CWE by The XSS Rat

50 CWE's every ethical hacker should know, which ones did I miss? Add your own in the comments! https://thexssrat.podia.com/ethical-hacking-guide-a-z?coupon=90OFF CWE -20: Improper Input

Uncle Rat's XSS Content

23 April 2023 - Posted in XSS by The XSS Rat

Written https://labs.hackxpert.com/blog/XSS/ https://labs.hackxpert.com/blog/XSS/XSS%200ad0878f33094ea6b8ac90e94c2b0dc2/XSS%20Cheat%20sheet%205c643ce56d1e4ed9871fdd909ded017e.html

Ensuring Application Security through State Management, Race Condition Mitigation, and Secure Transactions

19 April 2023 - Posted in Business logic by The XSS Rat

Introduction Ensuring the security and integrity of modern applications requires a multi-faceted approach. In addition to securing data and enforcing access controls, developers must also focus on

Broken Access Control(BAC)

Introduction This vulnerability type involves a lot of logic and in it's...