Wallarm Blog - Cloud-Native Application Security

In Web Application Security

Securing GraphQL API

May 18, 2020 7 Mins Read

Introduction to GraphQL Representational state transfer (REST) APIs are the most popular type of API. However, GraphQL is rapidly growing in popularity as a competitor to REST. GraphQL is a meta-layer with built-in query language to access object-oriented data. It’s based on JSON-encoded HTTP requests with custom queries inside. Unlike REST, there is no data inside the URL. These differences between traditional REST APIs and GraphQL ones can create challenges for security. Legacy web application…

In Web Application Security

Testing ModSecurity for false positives by books texts

May 12, 2020 3 Mins Read

The main things that prevent enabling security solutions like WAF/RASP/IDS/IPS in a blocking mode are false positives. Probably the second…

In Web Application Security

Apache Solr 1,2,3,4 Kill-Chain.

May 11, 2020 6 Mins Read

One of the services Wallarm offers today are Pentest Audits. Our team has met a new challenging task at a…

In Web Application Security

Test your WAF before hackers

April 20, 2020 6 Mins Read

Since 1991, Web Application Firewall, commonly referred to as WAF, has become one of the most common application security technologies…

In Wallarm

Isometric Illustrations in Figma

March 31, 2020 3 Mins Read

Figma is a powerful tool for interface development and prototyping. We use it to design our products and to create…

In Wallarm News

Protecting gRPC applications and APIs

March 19, 2020 3 Mins Read

Wallarm has always stood out from its competitors when it comes to supporting modern stacks. For a long time Wallarm…

In API Security

Application security through the lens of Cyberwar – One on One with Chris Kubecka

March 6, 2020 24 Mins Read

Last month, Wallarm Cybersecurity Strategist Kavya Pearlman interviewed cyberwar fare expert Chris Kubecka via a webinar session that was well…

In API Security

OWASP API Top 10 Projects: Highlights and Overview

February 28, 2020 13 Mins Read

In addition to the same risks that web applications are exposed to, APIs are faced with a number of unique security risks and vulnerabilities. This blogs provides an overview of the new OWASP API Top 10 risk project.

In Web Application Security

When your WAF needs its own WAF

February 14, 2020 2 Mins Read

Security products have their own security issues, which can affect products that they were designed to secure. It’s not a…

In Wallarm News

RSA 2020 – Must Visit

February 11, 2020 4 Mins Read

Visit Wallarm at RSA 2020 booth #4118 + see a list of other events going on during the conference for a richer experience

In Researcher Corner

Blind SSRF exploitation

February 11, 2020 10 Mins Read

There is such a thing as SSRF. There’s lots of information about it, but here is my quick summary. Let’s say you go to a website, fill out your profile, and get to the “Upload Profile Picture” step. And you have a choice: upload a file or specify a link.