Mayhem Blog

CWE-20 - Improper Imput Validation in a web application can allow an attacker to supply malicious user input that is then executed by the vulnerable web application. Improper input validation can be used to bypass security mechanisms, such as authentication and authorization controls.

In computer science, reachability is the ability to find a path from one node in a graph to another. A reachable assertion is an assertion that specifies a condition that must be satisfied for a particular path to be considered reachable.

CWE 401- Missing Release Of Memory After Effective Lifetime can occur when a program does not release memory after it is finished using it.

In mid-2021, the UNCE released new vehicle cybersecurity regulations in an effort to keep up with the rapid reliance of digitization within the automotive industry.

ISO 26262 is a standard for functional safety and automotive safety integrity level (ASIL) and an important measure for automakers and suppliers to stay on top of. In this post, you'll receive an overview of ISO 26262, steps you can take to comply with the standard, as well as the benefits of 26262.

This post will cover what ISO 21434 is, who it directly affects, and how interested parties can comply.

Unsure of where to start when it comes to vulnerability scanning? This article will introduce you to the basics and show you how vulnerability scanning can help improve your organization's security posture.

Learn about the importance functional testing plays in application security and how it can help ensure that newly introduced functionality does not introduce new vulnerabilities.

This blog post provides a general overview of the roles and importance of Dynamic Application Security Testing (DAST) and Static Application Security Testing (SAST) in Application Security Testing (AST), as well as how fuzzing fits into this picture.