Get a free application, infrastructure and malware scan report - Scan Your Website Now

API SecurityApplication Security TestingAppTrana Feature UpdatesAttacks & Data BreachesBotCDNCompliance SecurityCybersecurityData ProtectionDDoSEvents 2022Events 2023IndusfaceMobile Application SecurityNews 2022News 2023News 2024News 2025OWASP API Top 10OWASP Top 10Penetration TestingSaaSTranaSecurity BulletinSQL Injection AttacksSSLVulnerability ManagementVulnerability ScanningWAAPWAS Feature UpdateWeb Application FirewallWeb Application ScanningWeb Application SecurityWebsite HackingWebsite SecurityZero Day Attacks

Indusface Blog

All
XML RPC
Calender IconJanuary 17, 2024
Author Icon
Clock Icon 6 min Read
What is XML-RPC? Benefits, Security Risks, and Detection Techniques

vulnerability. An attacker may exploit this issue to execute arbitrary commands or code in the context of the webserver. This may facilitate various attacks

Read More...
API-Discovery
Calender IconJanuary 17, 2024
Author Icon
Clock Icon 9 min Read
API Discovery: Definition, Importance, and Step-by-Step Guide on AppTrana WAAP

By identifying & cataloging in-use APIs, API discovery enables organizations to assess security risks associated with each API upon inventory creation.

Read More...
Apache OFBiz Zero day vulnerability
Calender IconJanuary 16, 2024
Author Icon
Clock Icon 4 min Read
Critical Apache OFBiz Zero-day AuthBiz (CVE-2023-49070 and CVE-2023-51467)

The Apache OfBiz ERP system is found to have a zero day flaw (CVE-2023-51467) that may lead to unauthorized access. Explore the impact & patch details.

Read More...
What is vulnerability testing?
Calender IconJanuary 12, 2024
Author Icon
Clock Icon 7 min Read
What is Vulnerability Testing? Benefits, Tools, and Process

Vulnerability testing systematically identifies and evaluates weaknesses in digital systems, enabling proactive cybersecurity measures and threat mitigation.

Read More...
Website Security Threats
Calender IconJanuary 5, 2024
Author Icon
Clock Icon 6 min Read
5 Website Security Threats and How to Prevent Them

The volume, size, sophistication, and impact of website security threats are fast increasing, making their prevention imperative. Read more.

Read More...
Apache Struts 2 Vulnerability CVE-2023-50164
Calender IconDecember 21, 2023
Author Icon
Clock Icon 2 min Read
Apache Struts 2 Vulnerability CVE-2023-50164 Exposed

The latest vulnerability CVE-2023-50164 disclosed on Apache Struts affects the Struts 2 framework’s file upload logic, allowing unauthorized path traversal.

Read More...
How a WAF Works?
Calender IconDecember 21, 2023
Author Icon
Clock Icon 10 min Read
How Does a WAF Work?

A Web Application Firewall (WAF) enhances cybersecurity by filtering and blocking malicious traffic, protecting web applications from attacks like SQLi and XSS.

Read More...
Zimbra XSS vulnerability
Calender IconDecember 18, 2023
Author Icon
Clock Icon 4 min Read
Understanding the Zimbra Cross-Site Scripting Flaw (CVE-2023-37580)

The Zimbra XSS vulnerability allows an attacker to impact the confidentiality and integrity of the user’s data. Understand how to find & fix this flaw.

Read More...
11 Top CISO Challenges
Calender IconDecember 18, 2023
Author Icon
Clock Icon 6 min Read
LLMs, Quantum Computing, and the Top Challenges for CISOs in 2024

CISOs must prepare for top challenges, including LLMs threats, quantum computing, the security-UX trade-off, and alignment with technological advancements

Read More...
api
Calender IconDecember 15, 2023
Author Icon
Clock Icon 13 min Read
API Security 101: Understanding the Risks and Implementing Best Practices

API security is the process of securing APIs owned by the organization and external APIs used by implementing security strategies.

Read More...
API Security Protocols
Calender IconNovember 22, 2023
Author Icon
Clock Icon 3 min Read
API Security Standards and Protocols: A Primer

Explore crucial API security protocols, including SAML, OAuth 2.0, and JWT, ensuring robust authentication and authorization for safeguarding endpoints.

Read More...
DDoS Attack Mitigation Playbook
Calender IconNovember 21, 2023
Author Icon
Clock Icon 3 min Read
DDoS Attack Mitigation Playbook for SOC and DevOps Teams

Facing DDoS threats? Arm your SOC & DevOps teams with effective mitigation strategies. Explore geo-fencing, IP blacklisting, and rate limiting in our playbook.

Read More...
Managed WAF

Join 51000+ Security Leaders Get weekly tips on blocking ransomware, DDoS and bot attacks and Zero-day threats.

AppTrana

Fully Managed SaaS-Based Web Application Security Solution

Get free access to Integrated Application Scanner, Web Application Firewall, DDoS & Bot Mitigation, and CDN for 14 days

Get Started for Free Request a Demo

Gartner

Indusface is the only cloud WAAP (WAF) vendor with 100% customer recommendation for 4 consecutive years.

A Customers’ Choice for 2024, 2023 and 2022 - Gartner® Peer Insights™

The reviews and ratings are in!