Ein “Schnupperkurs” in Sachen Website Security gibt es im Webmaster Central Blog:
Today we’ll show you some examples of how a web application can be exploited so you can learn from them; for this we’ll use Gruyere, an intentionally vulnerable application we use for security training internally, too. Do not probe others’ websites for vulnerabilities without permission as it may be perceived as hacking; but you’re welcome—nay, encouraged—to run tests on Gruyere.
Christian Heilmann hat im Smashing Magazine eine informative Einführung in Website Security veröffentlicht.
Disclaimer: the things we’ll talk about in this article today won’t make you a security expert, just as buying a Swiss Army knife won’t make you a locksmith or buying a whip won’t make you a lion tamer. The purpose here is to raise awareness and perhaps make some of that security mumbo-jumbo a bit more understandable to you.
Jeff Orloff zeigt wie man mit WebScarab und Paros Proxy mögliche Exploits auf der eigenen Seite finden kann.
This article looks at some of the more popular vulnerabilities, such as cross-site scripting and SQL injections, and introduces tools you can use to help safeguard not only your sites, but the data and networks that power them.
Ha. ha , ha da hat jemand seine Firma ‘;UPDATE TAXRATE SET RATE = 0 WHERE NAME = ‘EDVIN SYSE’ genannt in Anspielung auf das Comic Exploits of a Mom.
via fefe
Nette kleine AIR Anwendung: SQLfury.
An SQL injection scanner, using blind SQL injection techniques to extract information from a target database.
Copyright © 2004–2009. All rights reserved. – Impressum
RSS Feed. This blog is proudly powered by Wordpress and uses Modern Clix, a theme by Rodrigo Galindez.