Home

Welcome to My New Information Security Blog

Is programming knowledge required for web application penetration testing?

Not required at first, but you will need it to move up the ladder (in proficiency). Here’s why:- For DAST (Dynamic Application Security Testing), aka looking for security weaknesses when the application is running, understanding how a web application flows helps in identifying weaknesses in the coding. While you do NOT need to learn it … Continue reading Is programming knowledge required for web application penetration testing?

Do not kill your pentester for little or no value-add

Disclaimer: This would be a long post (culmination of many old posts) with lot of different opinions, thoughts. If weaving is not right, please provide feedback on how it could be corrected. I had the good fortune of reading couple of threads by gentlemen whom I respect for their grounded advices. Their posts triggered some … Continue reading Do not kill your pentester for little or no value-add


Follow My Blog

Get new content delivered directly to your inbox.