Application Security

Swagger is an open source editor to help users design, define and document RESTful APIs in the Swagger Specification.

The purpose of implementing a restrict device access policy is to ensure that only authorized devices are permitted to access an organization’s cloud or on-premise environment.

Server-side request forgery (also known as SSRF) is a web security vulnerability that allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of the attacker's choosing.

RUDY (R-U-Dead-Yet?) attack is a slow-rate HTTP POST (Layer 7) attack tool used to achieve denial-of-service (DoS) by using long form field submissions.

Security Assertion Markup Language (SAML) is an open standard for exchanging authentication and authorization data between parties, such as an identity provider and a service provider.

Scraping or web scraping refers to the extraction of data from websites. The term typically refers to automated processes implemented using a bot or web crawler.

A security misconfiguration is a vulnerability that arises from incorrectly configured or insecure system settings, allowing unauthorized access and potential data breaches. Common causes include using default credentials, leaving unnecessary features enabled, outdated software, and insecure default configurations in cloud services or network infrastructure.

Server-Side Includes (SSI) are directives present on web applications used to feed an HTML page with dynamic contents.