AppCheck Security Blog
Featured post
Webinar: Integrating Security Testing into your Azure Pipelines
/ Posted July 27, 2020
Following a popular response from the launch of our Azure Pipeline Integration we have decided to run a webinar exploring the benefits of testing in the SDLC with a deep dive into our integration and how this can help you deliver cheaper and faster security coverage, at lower cost and with greater assurance.
read moreFilter by:
Webinar: Integrating Security Testing into your Azure Pipelines
Events / Posted July 27, 2020
Following a popular response from the launch of our Azure Pipeline Integration we have decided to run a webinar exploring the benefits of testing in the SDLC with a deep dive into our integration and how this can help you deliver cheaper and faster security coverage, at lower cost and with greater assurance.
Read moreIntegrating AppCheck into your Azure Pipelines
News Product / Posted July 16, 2020
AppCheck is pleased to announce official support for integration into Microsoft’s Azure Pipelines.
Read moreCross-site scripting webinar - July 2020
Events / Posted July 07, 2020
Cross-Site Scripting (XSS) is by far the most widespread high impact vulnerability, present even in the best of web applications, regardless of the framework or programming language employed - a burly steadfast member of the OWASP Top Ten. In this webinar we will build up piece-by-piece an understanding of XSS that spares no detail.
Read moreAppCheck Plug-in for CVE-2020-5902 & CVE-2020-5903
Product / Posted July 06, 2020
AppCheck have released a new plug-in to detect recently discovered security flaws within F5 BIG-IP devices, CVE-2020-5902 and CVE-2020-5903.
Read moreWebinar: URLs, Uploads and Dragons
Events / Posted June 18, 2020
Join our webinar exploring, through example, how subtle mishandling of URLs and files can lead to various high severity OWASP top 10 vulnerabilities.
Read moreScanning GraphQL for Vulnerabilities with AppCheck
News Product Research / Posted June 09, 2020
AppCheck is pleased to announce enhanced support for scanning GraphQL based APIs. In this post we take a brief look at GraphQL and some of the security implications surrounding the technology.
Read moreThe Importance of Regular Vulnerability Scanning
Research / Posted June 09, 2020
In an earlier article we have covered the importance of vulnerability scanning and why it remains a powerful tool in your security arsenal – in this article we will examine specifically why it is important to leverage one of the most powerful advantages that dynamic application security testing (DAST) or vulnerability scanning has over manual penetration testing: its ability to be scheduled for frequent or continuous assessment.
Read moreCommon e-commerce vulnerabilities and how to remedy
Research / Posted May 28, 2020
Modern e-commerce encompasses a broader network of activities and services relating to electronically buying or selling of products on online services or over the Internet. We explore common vulnerabilities that can occur within e-commerce sites and most importantly, how to remedy these.
Read moreThe Great Database Heist: Where'd all my Data Just Go!?
Events / Posted May 27, 2020
This is a brand new session including all new content surrounding SQL and NoSQL Injection attacks, exploits and prevention techniques.
Read moreGot Swagger? How mapping your API helps to protect it.
Research / Posted May 14, 2020
API security is often barely mentioned. Web application developers are, broadly, aware of vulnerabilities such as the OWASP Top 10, but these barely or tangentially mention API security as of the latest (2017) update.
This may not have been an issue historically, however APIs are no longer a niche or secondary form of traffic. API calls now represent 83 percent of web traffic, according to traffic review detailed in a recent report.
Read more