Download Netsparker
Netsparker Community Edition
Pricing
Blog
Contact
Netsparker
Netsparker

Are Hackers a Step Ahead? An Analysis using Web Application Vulnerabilities

Category: Web Security Readings - Tags: web application security , netsparker research , open source web applications - Tue, 23 Apr 2013, by Robert Abela
In this analysis the Netsparker team used Netsparker Web Application Security Scanner to scan a number of popular open source web applications and identify vulnerabilities in them. The results are very shocking and explain why malicious hackers are always a step ahead of website owners. A vulnerability statistics infographic was also generated from the results. Read more...

JavaScript Scope and IntenseDebate's Privacy Problems

Category: Web Security Readings - Tags: vulnerability , javascript hijacking , json hijacking , netsparker research - Tue, 26 Apr 2011, by Ferruh Mavituna
In this web application security article, Ferruh Mavituna, explains a security issue he identified in IntenseDebate online service that could allow attackers to access information about the logged-in session of the victim. Ferruh also suggests a number of remedies for this problem which every web application developer should know of. Read more...

SVN Digger - Better Wordlists for Forced Browsing with Netsparker Web Application Security Scanner

Category: Web Security Readings - Tags: forced browsing , hidden resources , web application security scan , netsparker research - Mon, 11 Apr 2011, by Ferruh Mavituna
In this blog post we explain how we built a database of keywords which will be used in Netsparker Web Application Security Scanner when doing forced browsing security checks to try and identify hidden resources in web applications during a security scan. Read more...

WebRaider

Category: Web Security Readings - Tags: webraider , tool , whitepaper , research - Sat, 27 Feb 2010, by Ferruh Mavituna
WebRaider is a proof of concept tool to get reverse shell from an SQL Injection with one request, without using any extra channels such as TFTP or FTP to upload the initial payload. Read more...

Follow us

Twitter Facebook Linkedin Google Plus RSS