Application Attacks (Buffer Overflows, Cross-Site Scripting) news, help and research


	Home > Security Topics > Information Security Threats > Web Threats > Application Attacks (Buffer Overflows, Cross-Site Scripting) > Expert Technical Advice

Security Topics:

EMAIL THIS

TOPICS HOME

BROWSE ALL SECURITY TOPICS

SECURITY INFO CENTERS

RESOURCE CENTERS

RSS FEEDS


Application Attacks (Buffer Overflows, Cross-Site Scripting)



IN THIS TOPIC:	NEWS (125) , EXPERT TECHNICAL ADVICE (50) , REFERENCE & LEARNING (20) , WEBCASTS (6) , DEFINITIONS (13)

Display in sets of:


1 - 10 of 50 in Expert Technical Advice		<< Previous page 1 2 3 4 5 Next >>



APPLICATION ATTACKS (BUFFER OVERFLOWS, CROSS-SITE SCRIPTING) EXPERTS



			John Strand ASK A QUESTION


	How can an enterprise-wide network remain resilient against denial-of-service (DoS) attacks? 16 Jul 2008 EXPERT ANSWER - Denial-of-service (DoS) attacks are often associated only with one type of flood attack, but there are many to look out for. Information security threats expert John Strand weighs in.


	New defenses for automated SQL injection attacks 12 Jun 2008 TIP - By automating SQL injection attacks, hackers have found a way to expedite the process of finding and exploiting vulnerable websites. The old defenses may not be enough.


	Are social networking sites an easy target for malicious hackers? 10 Jul 2008 EXPERT ANSWER - With the rise of social networking giants like MySpace and Facebook, it makes sense that there would also be a rise in malware to attack them.


	What are the dangers of cross-site request forgery attacks (CSRF)? 02 Apr 2008 EXPERT ANSWER - Ed Skoudis defines the threats posed by cross-site request forgery attacks (CSRF), and explains how they are similar and different from cross-site scripting attacks.


	Stopping malware in its tracks Submitted By: SearchSecurity.com \| 11 Mar 2008 TIP - Expert Lenny Zeltser offers a malware-defense blueprint every enterprise can follow, plus plenty of free tools to help along the way.


	What is the most secure way for application developers to manage cookies? 11 Feb 2008 EXPERT ANSWER - Cookies hold data, such as user preferences and session tracking credentials. In this expert Q&A, Ed Skoudis explains how application developers can define and manage the cookies appropriately.


	What software development best practices can prevent input validation attacks? 11 Feb 2008 EXPERT ANSWER - Improper input validation leads to numerous kinds of attacks, including cross-site scripting, SQL injection and command injection. In this expert Q&A, Michael Cobb reviews the most important application development practices.


	What is the relationship between shellcode and exploit code? 26 Dec 2007 EXPERT ANSWER - Is shellcode always considered exploit code? In this expert response, Michael Cobb breaks down the two malware terms.


	Making the case for Web application vulnerability scanners 08 Nov 2007 TIP - In this tip, Michael Cobb examines how a solid application vulnerability scanner can be a valuable part of an enterprise's development strategy.


	How to test an e-commerce Web site's security and privacy defenses 26 Oct 2007 EXPERT ANSWER - Assessing the security of e-commerce sites means checking up on their associated servers, databases and applications. In this expert response, Michael Cobb explains where to start.


1 - 10 of 50 in Expert Technical Advice		<< Previous page 1 2 3 4 5 Next >>

View this month\\'s issue and subscribe today.

Apply online for free conference admission.

SEARCH :

Advanced Search | Site Index

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.


TechTarget Corporate Web Site \| Media Kits \| Reprints \| Site Map All Rights Reserved, Copyright 2003 - 2008, TechTarget \| Read our Privacy Policy