Encoding and Canonicalization Vulnerabilities
Encoding flaws have arisen in many kinds of web server software and present an inherent threat in situations where the
Read moreETHICAL HACKING
Path Traversal Vulnerabilities
Accipiter DirectServer This path traversal flaw could be exploited by placing URL-encoded dot-dot-slash sequences into a request. For more information
Read moreBuffer Overflow Vulnerabilities
Buffer overflow vulnerabilities occur when an application copies user-controllable data into a memory buffer that is not sufficiently large to
Read moreTechnical Challenges Faced by Vulnerability Scanners
The barriers to automation described previously lead to a number of specific technical challenges that must be addressed in the
Read moreManual Request Tools
The manual request component of the integrated test suites provides the basic facility to issue a single request and view
Read moreA Web Application Hacker’s Toolkit
Some attacks on web applications can be performed using only a standard web browser; however, the majority of them require
Read moreSession Fixation
Session fixation vulnerabilities typically arise when an application creates an anonymous session for each user when they first access the
Read moreJSON Hijacking
JSON hijacking is a special version of an XSRF attack, which in certain circumstances can violate the objectives of the
Read moreFrame Injection
Frame injection is a relatively simple vulnerability that arises from the fact that in many browsers, if a web site
Read moreHTTP Header Injection
HTTP header injection vulnerabilities arise when user-controllable data is inserted in an unsafe manner into an HTTP header returned by
Read more