How To Break Web Software – A look at security vulnerabilities in web software
Google engEDU
1 hr 27 min – 13-Apr-06

Google TechTalks
April 13, 2006

Mike Andrews

Mike Andrews is a senior consultant who specializes in software security and leads the web application security assessments and Ultimate Web Hacking classes for Foundstone.

ABSTRACT
It all started out as a place to share physics documents, but has grown into potentially mankind’s largest and most complex creation. The World Wide Web is a lot of things – a soapbox for everyone, a giant shopping mall, an application platform, and unfortunately a hacker’s playground.

As more applications get "web-ified" moving from the desktop or legacy systems onto the web, attackers follow the vulnerabilities. Without sophisticated tools or "1337 5×1llz", web applications are now the most attacked technology, with the majority of attacks categorized as "easily exploitable".

So, before your application is placed out into one of the most hostile environments, how do you stop your software from being "0wn3d" by the 14 year old in their blacked-out bedroom, or being used by a Russian crime cartel?

In this TechTalk, Mike Andrews will look at how web applications are attacked, walk through a testing framework for evaluating the security of an application and take some deep-dives into a few interesting and common vulnerabilities and how they can be exploited. Read the rest of this entry »

How to apply htaccess on a web directory
Barry Thomas
14 min – 22-Mar-06

A guide to setting up a protected password folder using htaccess. Suitable for unix/linux systems. Read the rest of this entry »

How to install SMF Tutorial

4 min – 3-Mar-07

How to install SMF with Smart FTP, Cpanel X and MySql Database. In this tutorial, I will show you how to instal Simple Machine Forums to make your own forum in just 5 minutes. Read the rest of this entry »

How to set up Redirects using .htaccess

6 min – 21-Mar-07

http://successbizhome.com
An htaccess file is a simple ASCII file,
such as you would create through a
text editor like NotePad or SimpleText
You need to make sure you are allowed
to use htaccess before you actually
use it. Read the rest of this entry »

How To Break Web Software – A look at security vulnerabilities in web software
Google engEDU
1 hr 27 min – 13-Apr-06

Google TechTalks
April 13, 2006

Mike Andrews

Mike Andrews is a senior consultant who specializes in software security and leads the web application security assessments and Ultimate Web Hacking classes for Foundstone.

ABSTRACT
It all started out as a place to share physics documents, but has grown into potentially mankind’s largest and most complex creation. The World Wide Web is a lot of things – a soapbox for everyone, a giant shopping mall, an application platform, and unfortunately a hacker’s playground.

As more applications get "web-ified" moving from the desktop or legacy systems onto the web, attackers follow the vulnerabilities. Without sophisticated tools or "1337 5×1llz", web applications are now the most attacked technology, with the majority of attacks categorized as "easily exploitable".

So, before your application is placed out into one of the most hostile environments, how do you stop your software from being "0wn3d" by the 14 year old in their blacked-out bedroom, or being used by a Russian crime cartel?

In this TechTalk, Mike Andrews will look at how web applications are attacked, walk through a testing framework for evaluating the security of an application and take some deep-dives into a few interesting and common vulnerabilities and how they can be exploited. Read the rest of this entry »