by Binoy KL | Dec 23, 2011 | Application Security, Security Tools
In this post I am listing a set of vulnerable web applications publicly made available for the purpose of security testing and training. Google Gruyere for Web Application Exploits and Defences: A Python application with lots of bugs deliberately setup for web...
by Binoy KL | Sep 28, 2011 | Application Security, Reports & Whitepapers
Imperva has released a report on the anatomy of the SQL injection attacks. Well, its not much about the anatomy, but more about how, from where and when are the thing covered in this report. The report is prepared after monitoring a set of 30 web...
by Binoy KL | Dec 29, 2010 | Application Security, PCI DSS Compliance
Hackers have broken into the website of the New York tour company CitySights NY and stolen about 110,000 bank card numbers.They used the SQL Injection attack to get into the companies web server according to the breach notification letter published by the attorney...
by Binoy KL | Jul 22, 2009 | Application Security, Cloud Security, Security News
The recent incident at the Twitter on the information leakage shall not be considered as a cloud security weakness. Reading through various blogs and the description from Twitter , it looks like the real cause is the weak security practices followed by a Twitter...
by Binoy KL | Jan 5, 2008 | Application Security
Everyday application security is facing new threats and it challenges the business users. The latest is in the form of XSS attacks; where an application serving PDF files are vulnerable to these attacks. Attackers simply have to add an anchor containing a script, e.g....
Recent Comments