public marks

PUBLIC MARKS with tags web-dev & securite

30 May 2006 15:00

Repérer automatiquement les failles de sécurité des sites Internet

by fredbird
Le logiciel, dénommé SecuBat Framework, agit comme le ferait un pirate informatique: il attaque les sites web dynamiques afin d'identifier les forces et faiblesses de leurs systèmes de sécurité. Il les sollicite par des attaques croisées XSS (Cross-Site Scripting Attacks) ou par des injections SQL, c'est-à-dire en insérant des scripts Javascript ou des fragments de code SQL dans leurs formulaires, pour interroger leurs bases de données ou modifier leurs pages.

23 May 2006 07:30

Five common Web application vulnerabilities

by fredbird (via)
This article looks at five common Web application attacks, primarily for PHP applications, and then presents a case study of a vulnerable Website that was found through Google and easily exploited. Each of the attacks we'll cover are part of a wide field of study, and readers are advised to follow the references listed in each section for further reading. It is important for Web developers and administrators to have a thorough knowledge of these attacks. It should also be noted that that Web applications can be subjected to many more attacks than just those listed here.

30 March 2005 10:00

PUBLIC TAGS related to tag web-dev

lang:en +   lang:fr +   php +   securite +   type:article +  

Active users

fredbird
last mark : 30/05/2006 15:07