|
Web Site Measurement Hacks
|
|
Hits: 2 |
|
Date added: 09/04/2006 |
|
Enter Web Site Measurement Hacks, a guidebook that helps you understand your Web site visitors and how they contribute to your business's success. It helps organizations and individual operators alike make the most of their Web investment by providing tools, techniques, and strategies for measuring--and then improving--their site's usability, performance, and design. Among the many topics covered, you'll learn: definitions of commonly used terms, such as key performance indicators (KPIs), how to drive potential customers to action, how to gather crucial marketing and customer data, which features are useful and which are superfluous, advanced techniques that senior Web site analysts use on a daily basis. |
|
|
|
|
|
Web Services: Enumeration and Profiling
|
|
Hits: 0 |
|
Date added: 08/05/2005 |
|
Web services assessment can begin with a corporate name or some other such bit of information. This simple hint offers a wealth of information that needs to be unearthed. Focus first on locating single or multiple access points for a particular corporate. The methodology, which includes web services footprinting, discovery and search, is described in another paper (http://packetstormsecurity.org/papers/web/Defense_using_mod_security.pdf). Once an access point for a web service is uncovered, the next obvious step is to extract information from it.
Web services are deployed to invoke remote calls over HTTP/HTTPS. To make calls such as these, requires that information about the calls be shared with the end client. In the past, during the days of CORBA, developers used to share IDL (Interface Definition Language) files providing the required information over the network. Now, in the days of web services this has changed to WSDL (Web Services Definition Language). WSDL is a major source for information and can help in the enumeration process. We shall go over the enumeration process in subsequent sections. |
|
|
|
|
|
|
Web Hacking info
|
|
Hits: 13 |
|
Date added: 02/26/2006 |
|
This is two articles on some common webpage hacks. Very basic info for admin to secure them self from these attacks. |
|
|
|
|
|
|
Web Hacking Attacks And Defense
|
|
Hits: 1 |
|
Date added: 07/15/2005 |
|
|
|
|
|
|
|
|
Web Application Security - The Overlooked Vulnerab
|
|
Hits: 5 |
|
Date added: 05/10/2007 |
|
Web Application Security - The Overlooked Vulnerabilities
Are you adequately protecting the web applications that your
business depends on?
Software flaws are rapidly becoming the vulnerabilities of choice
to attackers determined to exploit mission critical systems.
However, it isn’t just vulnerabilities in the web applications that
organizations need to be concerned about. Vulnerabilities across
the entire enterprise application stack—including web and
application servers, databases and operating systems—that form
the foundation for web applications, also need to be addressed.
Publicity around breaches and regulatory pressures are pushing
web application security further in the spotlight. Traditional
approaches to web application security, including web
application firewalls, and web security modules, can be costly
and complex, and do not ultimately protect the entire application
stack. Host-based intrusion defense with deep packet inspection
is a new approach that addresses the need of organizations to
shield vulnerabilities across the entire application stack. |
|
|
|
