wesupport

Security Testing of Web Applications (III/III)

Last week I spoke about SQL injection attacks used to try and gain access to the Administrative Interface on an application sever. This week I will be talking about three other methods used to try and do the same. Parameter Tampering: Parameter tampering is a form of...

Security Testing of Web Applications (II/III)

Last week I spoke about Session hijacking and methods to secure Authentication details. This week I will be talking about the various types of attacks that are used to try and gain access to the Administrative Interface on the target application server. Administrative...

Security Testing of Web Applications (I/III)

Nowadays more and more important data is stored in web applications. These applications expose customer information, financial data and other sensitive and confidential data over the internet. The number of transactions on the web has also increased tremendously. So...