Hello Folks,
Can anyone share any helpful and informative web sites regarding Web security testing?
Thanks in advance.
Hello Folks,
Can anyone share any helpful and informative web sites regarding Web security testing?
Thanks in advance.
web application is a 3-ties application, and can be more also.
So, when we talk about web security it should be tested on all these 3-levels.
Regards,
Brijesh Jain
---------------------------------------------------------
Connect with me on Skype: jainbrijesh
Google Plus : jainbrijeshji
Web Application can be tested for security either manually or using automated tools. Manual Testing is usually performed using Web browser and a Web proxy tool like Paros or WebScarab. Automated tools are also useful in finding some common vulnerabilities such as SQL Injection and Cross Site Scripting. One example of such automated tool is AppScan.
When we talk about web security testing, it is more important to know about the OWASP top 10 vulnerabilities.
The OWASP Top Ten is a list of the 10 most dangerous current Web application security flaws, along with effective methods of dealing with those flaws
you can find more information from the below link
Top 10 Web application security vulnerabilities
Top 10 Application Security Vulnerabilities in Web.config Files - Part One
Top 10 Application Security Vulnerabilities in Web.config Files - Part Two
Last edited by admin; 10-06-2008 at 06:00 PM.
hi friend,
Security: The primary reason for testing the security of a web is to identify potential vulnerabilities and subsequently repair them.
1. Network Scanning 2. Vulnerability Scanning 3. Password Cracking 4. Log Review
5. Integrity Checkers 6. Virus Detection
Thanks
Deepasree