Open in app

Sign In

Write

Sign In

Asaf Sahar
Asaf Sahar

57 Followers

Home

Lists

About

Jun 16

Testing For SQL Injection Vulnerabilities using OWASP ZAP

In this blog post, I will explain SQL Injection (SQLi) and how to test for it using the OWASP ZAP tool. OWASP ZAP is one of the leading tools for testing web security vulnerabilities. It’s free and open-source software. SQL Injection at a glance SQL Injection (SQLi) is the ability to interfere with queries that…

6 min read

Testing For SQL Injection Vulnerabilities using OWASP ZAP
Testing For SQL Injection Vulnerabilities using OWASP ZAP

6 min read


Published in

AppsFlyer Engineering

·Dec 12, 2021

Scaling Security Testing by OWASP ZAP API

My journey of learning about additional security vulnerabilities continues with Reflected Cross-Site Scripting (XSS). To see how this journey started, you can go to my first blog post here. …

Security

4 min read

Scaling Security Testing by OWASP ZAP API
Scaling Security Testing by OWASP ZAP API
Security

4 min read


Published in

AppsFlyer Engineering

·Aug 30, 2021

My Journey into a QA Security Mindset: Information disclosure vulnerability

My journey into a QA Security Mindset continues with learning about Information Disclosure vulnerabilities. If you would like to see how this journey started, you can go to my first post here. I learned about information disclosure by seeing an example of a real bug. It was the exposure of…

Quality Assurance

4 min read

My Journey into a QA Security Mindset: Information disclosure vulnerability
My Journey into a QA Security Mindset: Information disclosure vulnerability
Quality Assurance

4 min read


Published in

AppsFlyer Engineering

·Jul 12, 2021

My Journey to a QA Security Mindset: SSRF vulnerability

Intro In my previous blog post, I discussed the first vulnerability that I learned about in my journey to a QA security mindset — IDOR. If you have not yet read the post, you can find it here. While the IDOR vulnerability felt more intuitive and easy to test, I…

QA

4 min read

My Journey to a QA Security Mindset SSRF vulnerability
My Journey to a QA Security Mindset SSRF vulnerability
QA

4 min read


Published in

AppsFlyer Engineering

·Apr 20, 2021

My Journey into a QA Security Mindset: IDOR vulnerability

Intro IDOR was the first web security vulnerability that I learned and tested. Why did I start with this vulnerability? Why did it amaze me after I learned it? …

QA

5 min read

My Journey into a QA Security Mindset: IDOR vulnerability
My Journey into a QA Security Mindset: IDOR vulnerability
QA

5 min read


Published in

AppsFlyer Engineering

·Mar 2, 2021

My Journey into a QA Security Mindset: Engage your solution with multiple R&D teams

Thanks for joining me for my second post in this QA Security Mindset series! For this blog post, I will focus on the steps I took to create an automated solution for testing website vulnerabilities. If you haven’t read my first post, you can find it here! Gather Information When I started…

QA

8 min read

My Journey into a QA Security Mindset: Engage your solution with multiple R&D teams
My Journey into a QA Security Mindset: Engage your solution with multiple R&D teams
QA

8 min read


Published in

AppsFlyer Engineering

·Jan 31, 2021

My Journey into a QA Security Mindset: Introduction

How it all started I remember that it started with: “We want to have centralized ownership in our QA group to lead and specialized in the security niche”. After all, software engineers in Dev and test need to be security minded in their profession. I responded “Sounds very interesting. But you know that I…

QA

3 min read

My Journey into a QA Security Mindset: Introduction
My Journey into a QA Security Mindset: Introduction
QA

3 min read

Asaf Sahar

Asaf Sahar

57 Followers

Senior QA Security Engineer | www.linkedin.com/in/asaf-sahar-94531121

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Text to speech

Teams