Feed
Discussions

Web Security

Web Security

#web-security

34 followers·98 articles

Web Security

#web-security·34 followers·98 articles

Web Security

Changelog

New steps component and improved accessibility on Hashnode's blog and docs product.

Nov 05, 2024·

new

Trending Articles

Revolutionizing Decentralized Finance on TON: The Tech Behind Seamless Liquidity and Cross-Chain Swaps.

Patience Uyire·46 reads

Life2App: Redefining Engagement in the New Economy.

Patience Uyire·46 reads

Reimagining Mobile Wallets: The Future of Finance in a Decentralized Web3 World.

Patience Uyire·46 reads

Top commenters this week

Mayank Arora

Edward D. Cornett

Edward D. Cornett

Clarence

Melisa Parker

Charlie Simmon

Writing Challenges

#2Articles1Week Challenge

Become better at technical writing; accept Hashnode's writing challenge for four weeks.

#2Articles1Week Challenge

#WomenWhoTech

Share your story, achievements, or experiences as a woman, non-binary folk in tech or as a #WomenWhoTech ally!

#WomenWhoTech

Self Starter

Publish your first article on Hashnode and become a self starter!

Self Starter

Serial Blogger

Publish an article every day for 7 days and earn a cool serial blogger badge!

Serial Blogger

Talk of the town

Write a story that drives amazing engagement on Hashnode and become the talk of the town!

Talk of the town

Word Warrior

Write an in-depth article on your Hashnode blog that's more than 2000 words and become a word warrior!

Word Warrior

Amrit Giri

blog.giriamrit.com.np·Jul 10, 2025

Jul 10, 2025

Hackthissite: Basic Challenge

Overview HackThisSite.org is an online platform that provides a legal and safe environment for individuals to improve their cyber security skills through a variety of challenges and Capture the Flag (CTF) events. level 1 Vulnerability Description: H...

Discuss·1 read

hari

spiddyyweb.hashnode.dev·Jul 07, 2025

Jul 07, 2025

Day 3 – I Built a Chat App in Django and Hacked It with XSS (Then Fixed It)

🧭 Introduction Hey friends! 👋Welcome back to Day 3 of my Django + AppSec journey. Today was wildly productive — I built a working chat interface, discovered an XSS vulnerability, and patched it using Django’s native tools. This post is part backend...

Discuss·1 read

30-days Django plus Appsec

LearningByBreaking

Al Amin Mollah

frontendfortress.hashnode.dev·Jul 06, 2025

Jul 06, 2025

[0.5] OWASP Top 10 Overview

yoooo so today i started my 300 days learning journeykicked off with owasp top 10 and did the tryhackme owasp room toofelt cool so owasp top 10 is like a list of most common web security problem like stuff hackers abuse in websites lol here’s the lis...

Discuss·22 reads

Kohsheen Razdan

Kohsheen Razdan

kohsheen.hashnode.dev·Jul 06, 2025

Jul 06, 2025

🚫 A02:2021 – Cryptographic Failures

Imagine you're sending a confidential letter through the mail. But instead of sealing it in a proper envelope, you just fold the paper and tie it with thread, thinking no one will peek. Along the way, a postal worker opens it, copies the contents, an...

🚫 A02:2021 – Cryptographic Failures

Discuss·7 reads

Elizabeth Fallstar

Elizabeth Fallstar

ghosthermes.hashnode.dev·Jul 04, 2025

Jul 04, 2025

“Oops, All Vulnerabilities!” Hackthebox Starting Point Oopsie 2025 writeup

Oopsie: When Access Control is a Suggestion Let’s set the scene: it’s a Friday in 2025, the world’s still spinning, and I’m jacked into the HackTheBox VPN, ready to see what fresh horrors await in the Oopsie lab. The name alone suggests someone, some...

“Oops, All Vulnerabilities!” Hackthebox Starting Point Oopsie 2025 writeup

Discuss·1 read

Abhinab Choudhury

Abhinab Choudhury

abhinab-choudhury.hashnode.dev·Jul 01, 2025

Jul 01, 2025

Implementing a Session-Based Authentication using Node and Express.js

We set up a basic Typescript Project. You can do it from scratch, but I have prepared a shell script that does that for me. Feel free to use, btw, this shell script, which I am using below to create the project, was created and documented in this blo...

Implementing a Session-Based Authentication using Node and Express.js

Discuss·12 reads

Behind the Login: How Authentication Really Works

Abhay

abhayit2000.hashnode.dev·Jun 23, 2025

Jun 23, 2025

From DevOps to Internal Developer Platforms (IDPs): Why Enterprises Are Building Golden Paths

DevOps has reshaped modern software development by closing the gap between development and operations. It brought automation, speed, and agility to how applications are built and deployed. But as enterprise-scale environments grow more complex—especi...

From DevOps to Internal Developer Platforms (IDPs): Why Enterprises Are Building Golden Paths

Discuss·28 reads

Kohsheen Razdan

Kohsheen Razdan

kohsheen.hashnode.dev·Jun 21, 2025

Jun 21, 2025

🔐 Understanding the OWASP Top 10: The Basics of Web App Security

As a cybersecurity intern exploring the web application security space, I started with the OWASP Top 10 — a fundamental list of the most common vulnerabilities that can affect modern web applications. This blog is part of a personal learning series w...

🔐 Understanding the OWASP Top 10: The Basics of Web App Security

Discuss·21 reads

Sohaib Ilyas

sohaibilyas.com·Jun 17, 2025

Jun 17, 2025

10 Essential Web App Security Best Practices for 2025

Beyond the Code: Fortifying Your Digital Fortress in 2025 Creating a functional web application is only half the battle. The other, more critical half is ensuring it's a secure fortress, impenetrable to the ever-evolving tactics of malicious actors. ...

10 Essential Web App Security Best Practices for 2025

Discuss·22 reads

Web App Security

Sojess T Sojan

stscodes.hashnode.dev·Jun 16, 2025

Jun 16, 2025

Securing APIs Against Replay Attacks with JWT Proof-of-Possession (PoP) Tokens

In modern web applications, especially those handling sensitive data or transactions, a common and dangerous threat is the replay attack. In its simplest form, a replay attack occurs when a malicious actor captures a valid request or token and resend...

Securing APIs Against Replay Attacks with JWT Proof-of-Possession (PoP) Tokens

Discuss·1 read