Select Categories Below
Status: Closed Points: 60 Time: 16:41 - Aug 14, 2006
Anpanman
I'm looking for the basic developer rules of thumb and also software to automatically test a website to protect it against sql injection or XSS. I'm aware of those issues when I develop a website, but I'm not sure if I get around all the possibilites of testing against it. I've taken a look at the Acunetix Web Vulnerability Scanner, but I'm not sure if it's worth the money or if there are any other better products out there?
Categories:
Add Categories
When adding more than one category, separate them with commas.
Advertisement
Date:: Sep 20, 2006
Time:: 11:23
I'm going to keep this question open still. I hope that someone knowledgeable in this field will pass by to answer it.
bit2bit
Date:: Oct 03, 2006
Time:: 00:13
SQL Injection, Cross-site Scripting & Automated Vulnerability Detection & Evaluation There are some nice Open-Source Tools, you could give a try: http://www.snort.org/ http://www2006.org/programme/files/xhtml... http://www.pcre.org/ Otherwise, you might also find something here: http://www.softwareqatest.com/qatweb1.ht... http://dmoz.org/Computers/Security/Inter... Or check my searchrolls at Rollyo for more: http://rollyo.com/explore.html?rollterm=... Enjoy. Greetings from Vienna
Time:: 03:44
Great, bit2bit! Thanks for all the references.
Question Answered
This question has been closed, and points have been rewarded to the following experts:
You're welcome however to comment or give additional information or if you wish, you have the ability to write an Answer Summary for the Summary Area.
Answer this Question
New User
Email:
Upon submission of this form, you will automatically be registered as a Quomon user and we will send your login information to this address
Registered User
Username:
Password:
Forgot Your Password?
Enter your email address below and we will resend your login information to you.
Login Information Sent
Time:: 06:35
SQL Injection, Cross-site Scripting & Automated Vulnerability Detection & Evaluation As the popularity of the web increases and web applications become tools of everyday use, the role of web security has been gaining importance as well. The last years have shown a significant increase in the number of web-based attacks. For example, there has been extensive press coverage of recent security incidences involving the loss of sensitive credit card information belonging to millions of customers. Many web application security vulnerabilities result from generic input validation problems. Examples of such vulnerabilities are SQL injection and Cross-Site Scripting (XSS). Although the majority of web vulnerabilities are easy to understand and to avoid, many web developers are, unfortunately, not security-aware. As a result, there exist many web sites on the Internet that are vulnerable... http://www.snort.org/ http://www2006.org/programme/files/xhtml...... http://www.pcre.org/ http://www.softwareqatest.com/qatweb1.ht...... http://dmoz.org/Computers/Security/Inter...... http://rollyo.com/explore.html?rollterm=...
Click here to see the Answer Discussion that preceded this summary.
Login to rate this summary: Good | Bad
Questions
hover gallery.
How long does Google and MSN store emails that can...
Does the United States Government have a CIO posit...
How do you turn off the signature option in the ad...
audio quality- when playing music/video's, the sou...
Thanks for your reply. Where are you located? Whic...
You have 100 characters to use
Rank
Expert
Points
1.
1073
2.
890
3.
877
4.
760
5.
620
6.
375
7.
370
8.
305
9.
275
10.
185
Register today to share your knowledge with the community and be recognized and rewarded for your contributions.
Register Here
"Psst, Quomon is a great site. Pass it on." Tell a Friend | Link To Us | Save to Delicious | Digg it
Language Options
English:
Español:
Sponsors
Questions and Answers Software Real Estate Postcards Marketing Fulfillment