If you’ve ever been tasked with securing a web application for one reason or another, then you know it’s not an easy feat to accomplish. Maybe you’ve read through several articles in an attempt to wrap your head around this endeavor. Well, look no further. I’ve put together a list of entry to mid-level tips that you can use to start or upgrade your web application security strategy. Tip #1: Don’t wait until the app is in production to check for vulnerabilities. When you think about building security into your application, the first thing that likely comes to mind is penetration testing.