Cyber Attacks

CSRF - Cross Site Request Forgery

XSS Attacks: 

• Input Validation and sanitisation
• Output encoding 

Excessive data expose: 

• API exposing more than necessary data
• Password spraying operations where pwd from one app is used to impersonal and gain access to other applications

Detecting SQL Injections

• Dynamic Application Security (DAST)
• Static Application Security Testing (SAST)
• Sqlmap