Stories about Security & other things

Is a Serverless application more secure? No, it's not!

They’re not as serverless as it sounds and not more secure than other applications.

6 min read

SmartScanner 1.13 now has logs and more Joomla! tests

SmartScanner version 1.13 released. It now can scan more vulnerabilities for Joomla!

1 min read

Is your robots.txt file vulnerable? Here's how to check and secure it

A bad configured Robots.txt file is like a welcome sign to your website for hackers. Let’s see how to set up an efficient and secure robots.txt.

3 min read

How to Secure your NodeJs Express Javascript Application - part 2

Express is an easy-to-use web framework for NodeJs. In this article, we will review some of the common vulnerabilities in NodeJs Express projects and explain mitigations against them.

6 min read

SmartScanner now has a 64-bit version for Windows

SmartScanner version 1.12 is out with a new 64bit build. Of course, we didn’t forget to include new tests.

1 min read

How to Secure your NodeJs Express Javascript Application - part 1

Express is a fast, unopinionated, and minimalist web framework for Node.js. It has been a de facto choice for creating a web-server application in Node.js. If you want to use Express in your application, you need to read this article.

4 min read

Host Header Injection and Python Tests with SmartScanner 1.11

SmartScanner version 1.11 was released with new tests like Host Header Injection.

1 min read

5 Security Vulnerabilities You Can Fix Right Now

We usually think security and hacking are complicated—at least it’s super geeky in movies—but you will be surprised to see how easy you can fix some security problems even without programming knowledge. Let’s review and fix them right away.

3 min read

Apache and Express Path Traversal plus Nginx Restriction Bypass Tests with SmartScanner

15 new CVEs for Apache, Nginx, OpenSSL, and Express included in version 1.10 of SmartScanner. Download it now!

1 min read

Complete guide to HTTP Headers for securing websites (Cheat Sheet)

HTTP Headers are a great booster for web security with easy implementation. Proper HTTP headers can prevent security vulnerabilities like Cross-Site Scripting, Click-jacking, Packet sniffing and, information disclosure.

7 min read
Older Posts

Test security of your weblog by SmartScanner. It's free!

Download