Online Fraud Detection
Posted on February 4, 2008 - Filed Under Input Filtering | Leave a Comment
A fraud-detection filter sitting inside the application server (for example, Websphere). Rules maintained by the enterprise are applied by the filter to any HTTP request (for example, login or payment) before the transaction hits the …
Read more: Online Fraud Detection
Hacking the Code: ASP.NET Web Application Security
Posted on January 30, 2008 - Filed Under Input Filtering | Leave a Comment
This unique book walks you through the many threats to your web application code, from managing and authorizing users and encrypting private data to filtering user input and securing XML. For every defined threat, it provides a menu of …
The rest is here: Hacking the Code: ASP.NET Web Application Security
httpsentry 1.0.1
Posted on January 25, 2008 - Filed Under Input Filtering | Leave a Comment
HttpSentry is also an effort to shift the burden of input validation and other security concerns off web application developers. Traditional network firewalls cannot protect web applications. Port 80 is wide open and according to …
See the original post here: httpsentry 1.0.1
Inspekt - PHP Input Filter
Posted on January 23, 2008 - Filed Under Input Filtering | Leave a Comment
Inspekt is an input filtering and validation library for PHP4 and PHP5. Driving principles behind Inspekt Accessing user input via the PHP superglobals is inherently dangerous, because the “default” action is to retrieve raw, …
See more here: Inspekt - PHP Input Filter
Debian: New horde3 packages fix denial of service
Posted on January 20, 2008 - Filed Under Input Filtering | Leave a Comment
LinuxSecurity.com: Ulf Harnhammer discovered that the HTML filter of the Horde web application framework performed insufficient input sanitising, which may lead …
Go here to read the rest: Debian: New horde3 packages fix denial of service
Secure Your ASP.NET Application from a SQL Injection Attack
Posted on January 17, 2008 - Filed Under Input Filtering | Leave a Comment
Perform validation on the user input to verify the input is limited to desired values. Data validation should be performed at both the client and the server. The server side validation is required to avoid a security weakness exposed by …
See original here: Secure Your ASP.NET Application from a SQL Injection Attack
VDrift 071226
Posted on January 15, 2008 - Filed Under Input Filtering | Leave a Comment
Fully modeled tracks, scenery and terrain * Several different camera modes * Basic replay system with Skip Forward/Skip Backward * Day/night weather cycle * Fully customizable controls * Joystick and keyboard input filtering …
More: VDrift 071226
SOME USEFUL FACTS OF ASP.NET
Posted on January 14, 2008 - Filed Under Input Filtering | Leave a Comment
The web application you are attempting to access on this web server is currently unavailable. Please hit the “Refresh” button in your web browser to retry your request.”? …. 2.62, How to convert user input in dMy format to Mdy? …
View original post here: SOME USEFUL FACTS OF ASP.NET
Thursday, January 10th, 2007
Posted on January 10, 2008 - Filed Under Input Filtering | Leave a Comment
Multibyte regex (oniguruma) backtrack check, On. mbstring extension makes use of “streamable kanji code filter and converter”, which is distributed under the GNU Lesser General Public License version 2.1. …
Original post: Thursday, January 10th, 2007
SQL injection
Posted on January 7, 2008 - Filed Under Input Filtering | Leave a Comment
The objective of this paper is to focus the professional security community on the techniques that can be used to take advantage of a web application that is vulnerable to SQL injection, and to make clear the correct mechanisms that …
Continued here: SQL injection