- About
Company Profile - White Paper
IT Security Articles - why focus on
Security?
Security is Important - Services
How Can We Help
You? - Contact
Contact details
Software Penetration Testing - White Papers
Web Application Penetration TestingFriday, 13 June 2008
A web application penetration test is concerned with evaluating the security of various web applications. A malicious user called Black Hat Hacker or Cracker is used for bringing about a false attack on the system. This helps in determining the possible threats to the computer system, thus facilitating the penetration test. It is a comprehensive process that analyzes the system for any potential vulnerability. The vulnerabilities may be caused due to a number of reasons;
Friday, 22 February 2008
A critical phase in the software development cycle. During this phase, the project is defined, everyone involved gets the proposal document for review and a risk analysis is performed on the project to address any threats during the Design and Development phase.
Friday, 15 February 2008
You might have heard the term “Strong Password” and may have wondered what it meant. Strong implies that it is more difficult to compromise and making it a stronger password is fairly easy to do. First we would like to lay out a few background facts and then we will show you an easy way to create a strong password.
Monday, 04 February 2008
SQL injection exploit is a well known threat. Typically either the URL or a screen input form can be used to deliver the unwelcome SQL commands. This is an attack that is easy to execute and does not require significant technical skills to perform. The approach is essentially to use a valid input method where the application is expecting some legitimate SQL commands, and to instead substitute your own malicious SQL commands. These commands can be used to steal data, destroy data or just to disrupt database operations.
Monday, 04 February 2008
An intruder file is introduced into the hosted web site through an invasive file submission. This threat can be executed very simply through a short HTML form (3 lines!). This is a less common but highly impactful attack. Any file of any type can be introduced in this fashion, and unless you have taken specific measures to prevent this specific type of an attack, your web site can be easily breached.
Monday, 04 February 2008
When one takes a penetrating look at the components of computer crime it reveals itself to be the same as any other crime. There's an attacker and a victim, and the attacker requires the same three components to be successful – Motive, Opportunity and Means (MOM).
Monday, 04 February 2008
Identity theft occurs when someone represents themselves as you and then enters into one or more transactions on your behalf. They can open a bank account, apply for a credit card, apply for a passport or other government ID, and they can even steal your house – selling it while you live there. The consequences of identity theft to someone’s life can be enormous and very arduous to undo.
Monday, 04 February 2008
One of the most common questions I am asked regarding home use wireless routers is "What is the risk if someone uses my Internet connection?" The answer below highlights the concerns, some of which are critical.Is it just free internet they are after or is something else at work here?