Community Blog
Attack Series: Cross-Site Request Forgery (CSRF)
March 26, 2012
Summary: What are the Cross-site Request Forgery Attacks (CSRF) attacks? The Cross-Site Request Forgery (CSRF) is an attack class which exploits the trust relationship between a web application and its legitimate user. For the execution of the CSRF, the ill-intentioned user should lure the legitimate user (either by means of social engineering or other tricks […]
N-Stalker build 119 is available for immediate update
February 24, 2012
N-Stalker’s engineering team has just released build 119 which contains improvements and bugfixes for N-Stalker Web Application Security Scanner 2012. This update includes: Fixes for HTTP NTLM authentication over SSL proxies; Improvements on javascript analysis; Overall memory improvements; Minor adjustments on user’s interface. Right now N-Stalker is going through a series of improvements aimed particularly […]
Attack Series: Learn more about SQL injection
February 15, 2012
Summary: After all, what are SQL injection attacks? Nowadays, the majority of the corporate web applications use relational databases to store data belonging to the company itself and to its customers, including sensitive information such as: Access credentials and personal information; Catalogue of products and services; Orders, bank account statements and information about payments; Client […]
« Older Entries Newer Entries »
