Search What is Detectify?
×

Web security blog

Search

Content Security Policy (CSP) explained including common bypasses

CSP response headers
Most read articles
How we got read access on Google’s production servers » How I hacked Facebook and received a $3,500 USD Bug Bounty » Misconfigured email servers open the door to spoofed emails from top domains »

Lerhan: Bypassing IDOR protection with URL shorteners

Detectify Crowdsource IDOR Lerhan URL shorteners
Is your web application secure? Sign up for a free trial and check your web application for 1000+ vulnerabilities

HTTP response splitting exploitations and mitigations

http headers HTTP response splitting XSS

Fitting automated security throughout the CI/CD pipeline

automated security CI/CD DAST DevSecOps

The real impact of an Open Redirect vulnerability

open redirect SSRF web vulnerability

Meet the Hacker: Inti De Ceukelaire – “While everyone is looking for XSS I am just reading the docs.”

crowdsource Meet the hacker securinti

Detectify security updates for 02 May

security updates

Meet the team: Wilder Parks III – leading Detectify’s expansion shortstop style

Boston office expansion Meet the team Sales Wilder Parks

Detectify security updates for 18 April

Apache RCE security updates

What information does Detectify provide for PCI Compliance Requirement 6?

compliance PCI DSS vulnerability management
What is Detectify? Contact us Detectify Labs tech blog Sign up for a free trial »
A security service for developers. Go hack yourself!