security

Cross Site Request forgery (CSRF)

By Sudhanshu on December 6, 2012 in security,Testing Framework - 0 Comments

Cross Site Request forgery (CSRF) is a kind of Web Application attack which tries to exploit the trust the website has in user’s browser. In this attack the attacker sends a crafted URL to the victim and if the victim clicks on the URL he/she makes an action on a web application he/she is authenticated [...]

Posted in security, Testing Framework | Leave a response

IS and OPS – Building the Bridge

By reswob10 on May 8, 2012 in Analysis,security - 0 Comments

I’ve tried writing this post several times and I was never happy with the result. Finally I sat back and realized that I was casting my net too wide. So I decided to break this post up into several parts. But first a quick overview of the concept I want to cover. I’ve been in [...]

Posted in Analysis, security | Tagged synergy | Leave a response

Application Security and Bug Free Coding – The Infographic

By Kumar on March 28, 2012 in security - 0 Comments

(Click Image to enlarge) Infographic by Veracode Application Security

Posted in security | Tagged Infographic | Leave a response

Joomscan: Tool for testing vulnerability in joomla

By Kumar on February 13, 2012 in security,Tools - 0 Comments

Joomscan is a tool for testing the vulnerability of websites that use free system to regulate online content ‘Joomla’. Given that the last update was in 2009, we decided to go further and help users to protect their Joomla sites. The last update was entered in the database 466 vulnerable components, today it is [...]

Posted in security, Tools | Leave a response

5 Most Common Web Application Vulnerabilities

By Kumar on December 21, 2011 in ISecurity,Malware,security,vulnerabilities,Vulnerability Research - 0 Comments

Injection Examples of injection flaws are SQL, LDAP, HTTP header injection (cookies, requests), and OS command injections Attacks occur when untrusted data, such as a query, command or argument, is sent to an interpreter Vulnerable applications can be tricked into executing unintended commands or allowing the attacker to access, and modify, data Cross Site [...]

Posted in ISecurity, Malware, security, vulnerabilities, Vulnerability Research | Tagged Review | Leave a response

Most common safety violations

By DigitOnto on February 4, 2009 in 0-day,exploit,security,vulnerabilities - 0 Comments

A while ago I came across an interesting recent report developed by the company by Verizon Business, which describes the most common safety problems that occurred during the past four years, causing considerable loss of information in enterprises. The report shows that: In 87% of cases, problems could have avoided problems through without basic safety [...]

Posted in 0-day, exploit, security, vulnerabilities | Leave a response

Commonly exploited security weaknesses

By DigitOnto on January 9, 2009 in attack,security,vulnerabilities - 0 Comments

Many attacks that an environment can suffer for the sole reason of being part of the World Web Wide, so it is necessary to centralize all efforts to improve strategic and proactive manner all aspects representing a potential point attack without neglecting those most trivial. Therefore, we have written a new paper that explains the [...]

Posted in attack, security, vulnerabilities | Leave a response

Mon	Tue	Wed	Thu	Fri	Sat	Sun
« Mar
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31