fbpx

Application Security

REFLECTED CROSS-SITE SCRIPTING – THE EASIEST WAY TO DISCOVER VULNERABILITY

Cross-Site Scripting (XSS) is a security weakness (Vulnerability) that takes advantage of dynamically generated Web pages. In an XSS attack, a malicious client-side script is embedded into a legitimate Web request. The script is activated when an unsuspecting Web browser later reads it. It manipulates...

BLACKBOX | SECURITY ASSESSMENT AND PENETRATION TESTING DISTRO

BackBox is a Linux distribution based on Ubuntu. It has been developed to perform penetration tests and security assessments. Designed to be fast, easy to use and provide a minimal yet complete desktop environment, thanks to its own software repositories, always being updated to the...

OWASP TOP 10 RELEASE CANDIDATE FOR 2013

Last month OWASP has released list of top 10 vulnerabilities for 2013. This list is a release candidate, but is more through with business level security testing. OWASP top 10 2013 list is as follows (Reference: www.owasp.org) Injection: Injection flaws, such as SQL, OS, and LDAP injection...

SECURING WORDPRESS PART 2 (BY EDITING FILES)

In last blog post we discussed about hot to secure WordPress installation with some plugins. We need to do some modification in files to secure WordPress, in this blog post we will look at which files needs to be changed in order to make WordPress installation like real steel. Remove META...

SECURING WORDPRESS PART 1 (USING PLUGINS)

As per the status today there are more than 60,997,996 sites are using WordPress as their blogging / content management system and we are also one of them. In recent years number of WordPress users is increasing day by just because of its simplicity. When we use...