Browsing Category

Application Security


Delegates-feature 0

Delegates and Events: C#, Net 4.0

Abstract In this article, you will learn how to create and manipulates Delegate types as well as C# events, which streamline the process of working

May 17, 2013 Application Security
Stress-Testing-Wifi-feature 0

Stress Testing Your Wireless Network

In order to overcome physical limitations of wired connections, a lot of us prefer wireless connections. It reminds me of when I had my Sony

May 15, 2013 Application Security
Form-Authentication 1

Form Authentication: ASP.NET Security Part 3

Abstract In the previous articles, you have learned about Windows Authentication and Code Access Security. This article’s objective is to further understanding of Form Authentication

May 08, 2013 Application Security
iOS-Application 0

IOS Application security Part 2 – Getting class information of IOS apps

Introduction Have you ever checked out an IOS app and thought it was cool, and wondered if you could find some information about the source

May 07, 2013 Application Security
IOS-app-security 4

IOS Application security Part 1 – Setting up a mobile pentesting platform

Introduction In this article series, we will be learning about the tools and techniques required to perform penetration testing and Vulnerability assessment on IOS Applications.

April 26, 2013 Application Security
Dot Net Security 0

Windows Authentication: Dot NET Security Part 2

Introduction The .NET framework caters to different types of authentication mechanisms to use within your applications – —including basic authentication, digest authentication, forms authentication, Passport,

April 26, 2013 Application Security
0

Massive Vulnerability CVE-2013-0027 Owns/Strikes Internet Explorer 6 to 10

The recent major vulnerability CVE-2013-0027 flooded almost all versions of Microsoft Internet Explorer and affected operating systems like Windows XP, Vista, 7, and 8, including

April 19, 2013 Application Security
Risks on a Shared Hosting Server 1

Risks on a Shared Hosting Server

PREFACE In this article, I would like to present the risks associated with hosting your site on a shared hosting server. I often correlate it

April 16, 2013 Application Security
EmbeddingSe2-04152013 0

Embedding Security in Procurement Process & Vendor Contracts – Part 2

Background: In the previous article, we’ve covered how to implement security in procurement process and vendor contracts. There are 3 different aspects to managing vendors:

April 15, 2013 Application Security
networkDMZ-04122013 0

Network Design Part 2: Demilitarized Zone/Honeypots

Introduction A Demilitarized Zone (DMZ) is a computer host or small network between a company private network and the outside public network. It was born

April 12, 2013 Application Security
Network Design: Firewall, IDS/IPS 1

Network Design: Firewall, IDS/IPS

Introduction There are many different types of devices and mechanisms within the security environment to provide a layered approach of defense so that if an

April 10, 2013 Application Security

Mapping Research Against the OWASP Top 10 to Develop an Effective Application Security Model

By: Tom Bain The OWASP Top 10 has become a globally recognized informal standard for web application security. Many organizations are using it to focus

April 04, 2013 Application Security
embeddedSecurity 0

Embedding Security in Procurement Process and Vendor Contracts

Background: Every organization has a procurement process. Some of the software products acquired by an organization are COTS (Commercial off The Shelf) Solutions. These products

April 03, 2013 Application Security
dataMasking-04022013 0

An Introduction to Data Masking

Background: Dealing with Production Data is a challenge, but most organizations around the world have safeguards in place which secure the production environment properly.However,when it

April 02, 2013 Application Security
csharp-core-04012013 0

C# Core Programming Construct (PART-1)

Introduction This article explores the core C# programming language constructs by presenting numerous stand-alone concepts such as data types, constants, iterations and conditional statements. This

April 01, 2013 Application Security
Mobile-Security-03252013 0

Importance of security in mobile platforms

Introduction In this period, security firms are publishing detailed reports on analysis conducted on principal cyber threats detected in 2012, the results proposed present a

March 25, 2013 Application Security
web-services-03182013 0

Web Services

Introduction Software developers have struggled to create software components that can be called remotely over local networks and the Internet. In this process, several technologies

March 18, 2013 Application Security
Exception-handing-03152013 0

Exception Handling

Introduction C# and the .NET CLR use exceptions to indicate that an error condition has occurred during program execution. C# programs are under constant threat

March 15, 2013 Application Security
Security-requirement-031313 3

Building Security in Requirements

Background: Every software application or product is developed based on business expectations. If we want to build a secure product or application, it is inevitable

March 14, 2013 Application Security
ADOdotNET-Architecture-03122013 0

ADO.NET Architecture

ADO.NET uses a multilayer architecture that has components such as the Connection, Reader, Command, Adapter and DataSet objects. ADO.NET introduced data providers that are a

March 12, 2013 Application Security
Back to Top Copyright © 2012 - InfoSec Institute