Recent Entries

• Excessive Data Exposure: An Overview of OWASP Top 10 API Securi

  by Prancer ‎ June 19, 2023
  Introduction Excessive Data Exposure poses a significant risk of exposing sensitive data through APIs, intentionally or unintentionally. When APIs provide access to more data than necessary, it can result in sensitive information being exposed. Additionally, data returned to the caller may not be p...

• Recent Penetration Testing Experiences: Key Insights and Prance

  by Prancer ‎ June 19, 2023
  Over time, Penetration Testing has evolved significantly, thanks to technological advancements that have facilitated the identification of security infrastructure vulnerabilities in organizations more efficiently and effectively. This post shares Penetration Testing tales from the field and highligh...

• Securing Your Cloud Environment with Prancer: The Importance of

  by Prancer ‎ June 15, 2023
  Cloud computing has become an integral part of modern business infrastructure. However, with the increasing use of cloud technology, there has been an increase in the number of cyber threats. Cloud Pentesting is a proactive approach to identifying and mitigating security risks in cloud infrastructur...

• PCI DSS Compliance

  by Prancer ‎ June 7, 2023
  To become PCI compliant, businesses must satisfy a set of standards defined by the PCI Security Standards Council. And the major requirement for PCI DSS Compliance is the regular internal and external pentesting. Fully automated penetration testing solutions can help a company to reach PCI complianc...

• Dynamic Application Security Testing

  by Prancer ‎ May 26, 2023
  Modern web applications and APIs cannot be contextually white-box analyzed by Dynamic Application Security Testing (DAST) technologies for serverless and container apps. It is no longer practical for DAST to rely on embedded actors on runtime networks. Integrating custom business logic into authoriz...