Read about all the security issues that we find during our automated security reviews, and how to solve them.
Stay up-to-date on the latest security vulnerabilities, threats, detection and mitigation methods. Only valuable content, no spam.
The web/application server is leaking information via one or more “X-Powered-By” HTTP response headers.
HTTP Strict Transport Security (HSTS).
The TLS and DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets.
It is possible to view a listing of the directory contents.
This website uses ASP.NET's Viewstate, and its value is split into several chunks.
This website uses ASP.NET's Viewstate but without any MAC.
Run our automated penetration testing and vulnerability assessment to protect your web application from hackers.