|
Yahoo! Hacks
hot!
|
|
Hits: 95 |
|
Date added: 11/26/2005 |
|
Yahoo Hacks shows you how to use, expand, personalize, and tweak Yahoo! in ways you never dreamed possible. Yahoo Hacks provides the tools to take you further than you ever thought possible. |
|
|
|
|
|
|
GMail Hacking
hot!
|
|
Hits: 59 |
|
Date added: 02/09/2006 |
|
You will not belive what you can do with your Gmail account. This book will open up many secrets of Gmail. Read the Read Me file to get better descriptions of the eBook. |
|
|
|
|
|
Error based SQL Injection
hot!
|
|
Hits: 51 |
|
Date added: 01/01/2008 |
|
How to use the database's errors as footholds to step further SQL attacks. |
|
|
|
|
|
|
Maximum Security 4th Edition
|
|
Hits: 45 |
|
Date added: 10/28/2007 |
|
Maximum Security, Fourth Edition provides updated, comprehensive, platform-by-platform coverage of security issues, and includes clear, to the point descriptions of the most common techniques hackers use to penetrate systems. This book provides information for security administrators and others interested in computer and network security and provides them with techniques to take steps to protect their systems. |
|
|
|
|
|
|
Bypass Testing of Web Applications
|
|
Hits: 37 |
|
Date added: 12/05/2007 |
|
Web software applications are increasingly being deployed
in sensitive situations. Web applications are used
to transmit, accept and store data that is personal, company
confidential and sensitive. Input validation testing
(IVT) checks user inputs to ensure that they conform to
the program’s requirements, which is particularly important
for software that relies on user inputs, including
Web applications. A common technique in Web applications
is to perform input validation on the client
with scripting languages such as JavaScript. An insidious
problem with client-side input validation is that end
users can bypass this validation. Bypassing validation
can reveal faults in the software, and can also break the
security on Web applications, leading to unauthorized
access to data, system failures, invalid purchases and
entry of bogus data. We are developing a strategy called
bypass testing to create IVT tests. This paper describes
the strategy, defines specific rules and adequacy criteria
for tests, describes a proof-of-concept automated tool,
and presents initial empirical results from applying bypass
testing. |
|
|
|
