Long-lived JWT - Abuse and Mitigation
CSV Formula Injection
Another common security issue which is found these days is CSV injection(CSV - Comma Separated Value). Recently I came across a web application which had this bug and I could not stop myself from writing this blogpost.
Authorization Checks Made Easy
Although its not new thing to blog about but I am sure, it will help out most of the security analyst and bug bounty people out there looking for authorization issues
The Blend of Developer Tools into Security Assessments
Finding Gems in JavaScript using Dumpster Diver
From my past experience, I realized the extensive use of JavaScript in modern applications. Most of the applications front-end logic is driven using JavaScript.