secure. network. communications.
Cape Town, South Africa: Tel: +27 21 686 2227 | Fax: +27 86 551 0575 | Email us

Cross Site Scripting and SQL injection explained

OWASP has a full range of videos that give you a basic view of XSS and SQL injection: SQL injection Full table and column traversal and site take-over is almost an inevitable consequence of non-managed user input and system output (like error messages). This OWASP video gives you a quick introduction. Cross Site Scripting (XSS) Easy to exploit, easy to find, highly varied – script...

Read the full story

OWASP Top Ten Security Threats 2010

In case you don’t have them to hand: Last updated on April 22, 2010, the OWASP Top 10 Web Application Security Risks for 2010 are: A1: Injection A2: Cross-Site Scripting (XSS) A3: Broken Authentication and Session Management A4: Insecure Direct Object References A5: Cross-Site Request Forgery (CSRF) A6: Security Misconfiguration A7: Insecure Cryptographic Storage A8:...

Read the full story