If you’re new here, you may want to subscribe to my RSS feed. Thanks for visiting!http://googleonlinesecurity.blogspot.com/2007/07/automating-web-application-security.html
They may know a thing or two about securing web apps
Share and Enjoy:
These icons link to social bookmarking sites where readers can share and discover new web pages.
Tags: security
This is a really detailed FAQ about all the major topics about web application security. It is a great read. Here is the link.
Share and Enjoy:
These icons link to social bookmarking sites where readers can share and discover new web pages.
Tags: security
Here is an article about input parameters validation framework. It is just a couple of functions but it works very well and is easy to use.
Enjoy.
P.S. I will be writing something original soon…stay tuned.
Share and Enjoy:
These icons link to social bookmarking sites where readers can share and discover new web pages.
The Ruby on Rails Security Blog has a post about a potential XSS issue with to_json.
Enjoy.
Share and Enjoy:
These icons link to social bookmarking sites where readers can share and discover new web pages.
The Ruby on Rails Security blog has a good article about SQL Injection and Ruby on Rails. Check out the SQL Injection article.
Enjoy.
Share and Enjoy:
These icons link to social bookmarking sites where readers can share and discover new web pages.
Here is an interesting article by Bruce Schneier about the benefits and issues with penetration testing – “Is Penetration Testing Worth It?”.
I think it makes a lot of sense. I have been researching what types security testing tools are out there and wondering what is the best way to test for security flaws.
Is it better [...]
Tags: security
http://www.rorsecurity.info/2007/05/04/dom-injection-attacks/
http://www.rorsecurity.info/2007/05/04/defeating-input-filters-for-injection/
enjoy!
Share and Enjoy:
These icons link to social bookmarking sites where readers can share and discover new web pages.
Tags: security
Preventing XSS attacks in your Rails application turns out to be fairly easy thanks to some built in functionalities of Rails.
Lets first start out talking about ways to prevent XSS scripting in general before we see how rails can help us. These are three things you can do:
Validate all request parameters and form data [...]
The Ruby on Rails Security Blog has a couple great post about session hijacking and how to prevent it in your Rails applications. This is a great blog that has a lot of good information about web app security for rails.
http://www.rorsecurity.info/2007/04/12/session-hijacking/ http://www.rorsecurity.info/2007/04/15/session-fixation-in-rails/
Share and Enjoy:
These icons link to social bookmarking sites where readers can share [...]
What is it?
Cross Site Scripting, or XSS has it is commonly referred to, is when an attacker use malicious scripting code to either attack an end user’s computer, impersonate another user or attack a web site. This can be done in several ways from malicious web sites to an attacker injecting code into unprotected [...]
Tags: security
