본문 바로가기

web application8

728x90
Command Injection Filters - Web Hacking Web Application Pentesting 2014. 1. 13.
webhoneypot: Web Application Honeypot webhoneypot is a DShield Web Application Honeypot offering this honeypot for users to capture automated web application exploits. It is a very simple “semi interactive” honeypot implemented in PHP.webhoneypot project is used to develop the honeypot. Do not use this code to install a honeypot unless you are interested in helping development.Prerequisitesfor installing webhoneypot.dshield.org acco.. 2012. 7. 12.
Is my Web Application Firewall Blocking WebsiteDefender? Previously we explained why some web hosting servers block the WebsiteDefender Agent, which could cause your WebsiteDefender service to malfunction. In this article, we will show you exactly how a web application firewall can block communications between the WebsiteDefender Agent and the WebsiteDefender Server. Many hosting providers or server administrators use web application firewalls, such a.. 2012. 4. 13.
wavsep: Web Application Vulnerability Scanner Evaluation Project A vulnerable web application designed to help assessing the features, quality and accuracy of web application vulnerability scanners. This evaluation platform contains a collection of unique vulnerable web pages that can be used to test the various properties of web application scanners. Additional information can be found in the developer's blog: http://sectooladdict.blogspot.com/ Project WAVSE.. 2011. 9. 20.
skipfish - web application security scanner A rough list of the security checks offered by the tool is outlined below. High risk flaws (potentially leading to system compromise): Server-side SQL injection (including blind vectors, numerical parameters). Explicit SQL-like syntax in GET or POST parameters. Server-side shell command injection (including blind vectors). Server-side XML / XPath injection (including blind vectors). Format strin.. 2010. 3. 30.
728x90