fbpx

Security

REFLECTED CROSS-SITE SCRIPTING – THE EASIEST WAY TO DISCOVER VULNERABILITY

Cross-Site Scripting (XSS) is a security weakness (Vulnerability) that takes advantage of dynamically generated Web pages. In an XSS attack, a malicious client-side script is embedded into a legitimate Web request. The script is activated when an unsuspecting Web browser later reads it. It manipulates...

BLACKBOX | SECURITY ASSESSMENT AND PENETRATION TESTING DISTRO

BackBox is a Linux distribution based on Ubuntu. It has been developed to perform penetration tests and security assessments. Designed to be fast, easy to use and provide a minimal yet complete desktop environment, thanks to its own software repositories, always being updated to the...

NMAP – BASIC INTRODUCTION AND COMMANDS

Nmap – Network Mapper is a free and an open source application for network discovery, security auditing application. This application is available for windows and linux both platforms in GUI and CLI mode. Nmap can also be used for some useful networking tasks like network...

OWASP TOP 10 RELEASE CANDIDATE FOR 2013

Last month OWASP has released list of top 10 vulnerabilities for 2013. This list is a release candidate, but is more through with business level security testing. OWASP top 10 2013 list is as follows (Reference: www.owasp.org) Injection: Injection flaws, such as SQL, OS, and LDAP injection...