The CISO Den
Published in

The CISO Den

Updated: Identity Management Vulnerability Taxonomy

No pentest will find this out

I really like the OWASP list of vulnerabilities because it mostly stays in an uniform level of abstraction. Some issues are fairly technical like the Heartbleed bug, but some are more functional in nature and can be present even if technology evolves, like Improper Data Validation.

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store