loading...

re: If you were tasked to conduct a security audit on a server/database-backed web app, where would you start? VIEW POST

FULL DISCUSSION
 

I would start with the human layer of the stack. Who has access, what are their permissions, are accounts shared, password requirements, etc.

code of conduct - report abuse