Clik here to view.
Netsparker Sponsors PHPKonf 2017 in Istanbul
We are happy to be sponsoring the PHPKonf conference for the third year in a row. We have also partnered with the organizers to help them in any way we can with the logistics and running of the...
View ArticleClik here to view.
Ferruh Mavituna Discusses Web Application Security Automation on Risky...
Our CEO and founder Ferruh Mavituna was interviewed during episode #447 of the popular podcast Risky Business. During the interview Ferruh and the show’s host Patrick Gray discuss what can actually be...
View ArticleClik here to view.
March 2017 Netsparker Desktop Update
This month's update of Netsparker Desktop web application security scanner might not have new fancy features, but it includes a good number of coverage, detection, performance and UI improvements. We...
View ArticleClik here to view.
Information Disclosure Issues and Attacks in Web Applications
Information disclosure is when an application fails to properly protect sensitive information from parties that are not supposed to have access to such information in normal circumstances. These type...
View ArticleClik here to view.
Ferruh Talks About Netsparker Hawk on Paul's Security Weekly #506
Watch episode 506 of the popular Paul’s Security Weekly, during which our CEO and founder Ferruh Mavituna talks in detail about the new Netsparker Hawk vulnerability testing framework.During the...
View ArticleClik here to view.
Netsparker Will Be Exhibiting at the Software Design & Development Conference...
We will be exhibiting the Netsparker Web Application Security Scanner at the SDD Conference, which will be held in London between the 15th and the 19th of May 2017.The Software Design and Development...
View ArticleClik here to view.
How I Hacked my Smart TV from My Bed via a Command Injection
It was one of those lazy evenings, just watching TV after a long day. I was tired but kept on thinking about a vulnerability I found earlier on in a router someone gave me. Finding a flaw in such a...
View ArticleClik here to view.
April 2017 Netsparker Cloud Update
We have just updated Netsparker Cloud, our online web application security scanner.In this new update we included a wizard to help first time users add their first website to Netsparker Cloud and...
View ArticleClik here to view.
Win A Full Conference Ticket to OWASP AppSec Europe
We are giving two lucky people the chance to attend the OWASP AppSec Europe conference this year, which will be held in Belfast between the 8th and 12th of May 2017. We are also sponsoring and will be...
View ArticleClik here to view.
What is an Open Redirection Vulnerability and How to Prevent it?
An Open Redirection is when a web application or server uses a user submitted link to redirect the user to a given website or page. Even though it seems like a harmless action, to let a user decide on...
View ArticleClik here to view.
Exhibiting & Speaking at Infosecurity Europe 2017
This June we will be exhibiting the Netsparker web application security scanner at one of the biggest security conferences in Europe; Infosecurity Europe. Our CEO Ferruh Mavituna will also be speaking...
View ArticleClik here to view.
Course: Introduction to Web Application Penetration Testing
Modern web applications are very complex. So even though we at Netsparker have pioneered a number of cutting edge technologies to help you automate most of the vulnerabilities detection process, one...
View ArticleClik here to view.
Preventing Cross-site Scripting Vulnerabilities When Developing Ruby on Rails...
Table Of ContentsWhat is HTML Escapinghtml_safe and Introduction to Safe BuffersTransferring Data from Rails to HTMLTransferring Data from Rails to JavaScriptTransferring JSON Data to...
View ArticleClik here to view.
How to Disable Directory Listing on Your Web Server
Misconfigured or default configuration on web servers may lead to a number of issues that might aid malicious hackers craft a hack attack. One common web server issue is directory listing. Many leave...
View ArticleClik here to view.
Demo: Exploiting a Blind XSS & Second Order SQL Injection
Watch the Tech Segment from Paul’s Security Weekly show #512 for a live demo of how to exploit a Blind Cross-site Scripting (XSS) and a Second Order SQL Injection vulnerability.The demos were delivered...
View ArticleClik here to view.
XSS, CSRF & Other Vulnerabilities in CubeCart Web Application
CubeCart is an open source ecommerce web application that enables shop owners to manage and list their products on their online shop and website. The first version of CubeCart was released in 2003 and...
View ArticleClik here to view.
Netsparker Exhibiting at RSA Conference 2017 in Singapore
This year we will be exhibiting our web application security scanner at RSA Singapore, which will be held at the Marina Bay Sands from the 26th to the 28th of July 2017. This event is the leading...
View ArticleClik here to view.
What is a Cross-Site Request Forgery Attack & How to Prevent It
The web would not be as we know it today if it was not possible for a website to request data from another. A few examples; pictures which are fetched from another website, scripts files that are saved...
View ArticleClik here to view.
How to Integrate Netsparker Cloud with JIRA Issue Tracking System
By integrating Netsparker Cloud with JIRA you can have the vulnerabilities that were identified during a web application security scan automatically sent to JIRA, as issues.This type of integration in...
View ArticleClik here to view.
Infosecurity Europe 2017 Tech Talk: Scaling-Up & Automating Web Application...
During Infosecurity Europe 2017, one of Europe’s biggest security conferences, Netsparker CEO Ferruh Mavituna delivered a tech talk about the challenges of Scaling-Up & Automating Web Application...
View Article