Tag: web-application

Found 1328 results for 'web-application'.

1) web-application - Does client-side data tampering allow more than just evading validation? Dictionary attacks? Brute-force login attempts?
2) web-application - Why is PHPs $_REQUEST considered to be evil?
3) web-application - Protecting from console attacks
4) web-application - Unknown process on my ubuntu machine communicating over multiple ports with UDP proto
5) tls - TLS/SSL and password transmission
6) web-application - CSRF Protection on static pages
7) web-application - Is it more secure to program a client-server system in a language other than English?
8) web-application - Why should double submit CSRF tokens be cryptographically strong random numbers?
9) web-application - Why does an anti-forgery token need so many bits?
10) web-application - Why can't we use a third party website to make a csrf attack?
11) web-application - Why can't persistence XSS be detected by a Web Application Firewall?
12) web-application - Important data can be modified from the developer console. What should I do?
13) authentication - Protecting the user from unauthorized access
14) web-application - Protecting an admin area from the public
15) encryption - Review of approach to client-side only hashing and encryption for web application
16) web-application - How to crawl a web site if content is only visible to registered accounts?
17) web-application - How do I secure "Data at Rest" only allowing Service API to access it from a mobile application
18) encryption - CRM with Client Side Encryption
19) web-application - Why are ASP.NET form authentication cookies deleted only on client side if client side can't be trusted?
20) web-application - OWASP Client-Side Testing - How To
21) encryption - Solution to the ‘Browser Crypto Chicken-and-Egg Problem’?
22) web-application - How to know if an ASP web page is vulnerable to SQL injection?
23) web-application - How could one determine if a web page is vulnerable?
24) web-application - What defines a CSRF vulnerability?
25) web-application - Security risk of adding a HTTP Header with server identifier
26) encryption - Does passing encrypted card data through a server mean that the server must be PCI compliant?
27) authentication - ASP.NET - why default SecurityStamp validation interval is set to 30 minutes?
28) web-application - JWT or session cookie for API for both web and mobile app?
29) passwords - How to authenticate in a website with public/private keys?
30) web-application - Any way to browse OSVDB?
31) tls - What are good approaches to modify TLS/SSL trafic in order to make a HTTP bot?
32) authentication - Token based API security over repeated username/password requests
33) web-application - Is Payment using an iframe more secure than using as Javascript library?
34) web-application - Obfuscating JavaScript code
35) encryption - Is client side encryption really better than server side?
36) web-application - Elaborate Hacking attempt detected - now what?
37) web-application - Why are CSRF tokens used so often?
38) cryptography - Is a rand from /dev/urandom secure for a login key?
39) web-application - Should CSRF 'Double Submit Cookie' technique have a different seed value for the cookie versus the HTTP POST?
40) web-application - PHP max_input_vars security expectations
41) web-application - Should I use CSRF protection on Rest API endpoints?
42) web-application - How does a CSRF token prevent an attack, and how can I safely use/avoid it for my JSON API?
43) web-application - Advantages of multiple valid CSRF tokens
44) web-application - Obtaining CSRF Token
45) web-application - HOW is the malicious URL/payload is delivered to the user on a DOM based XSS attack?
46) web-application - Reflected XSS script passing through URL how to make it work and what are the preconditions for it to work?
47) web-application - Ensure web service only accessed by authorized applications
48) appsec - Without using SSL, what's the most secure way to make an AJAX request to a PHP page?
49) web-application - Is same origin policy for web only useful because of cookies?
50) authentication - RESTful web application security and authentication scheme