server-side validation

Reverse-Engineering-KrishnaG-CEO

OWASP Top 10 for Mobile Apps: M9 – Reverse Engineering

by

Reverse engineering is the process of analysing a system or software to understand its components, functionality, and architecture. In the context of mobile apps, reverse engineering typically involves deconstructing an app’s compiled code to reveal its source code, data structures, and logic. The goal may be to identify vulnerabilities, extract sensitive data, or alter the app’s behaviour for malicious purposes.

HTTP-Parameter-Pollution-Vulnerability-KrishnaG-CEO

The HTTP Parameter Pollution (HPP): Protecting Web Applications with Robust Security Practices

by

HTTP Parameter Pollution, or HPP, is a type of web security vulnerability where an attacker manipulates HTTP request parameters to bypass input validation, inject malicious payloads, or alter the intended behaviour of a web application. By injecting additional parameters or manipulating existing ones, attackers can trick the server into processing unintended actions. This form of attack can lead to a range of exploits, including SQL injections, cross-site scripting (XSS), and even unauthorised access.