Information Security Bulletin

New Web Site Security Centre

19 Apr 04:38

New information center offers advice on how to prevent SQL injection, Cross Site scripting, Google hacking and other web application attacks.

Acunetix has launched the Acunetix Web Site Security Center, a web site security information center that educates visitors on the latest and most threatening web application hacking techniques. The new site is frequently updated with current information concerning new hacking techniques.

Web site security is possibly today's most overlooked aspect of securing the enterprise. Hackers are concentrating their efforts on web sites: 75 per cent of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking!

Common web hacking techniques, such as SQL injection, cross site scripting, authentication hacking, CRLF injection, Google hacking and directory traversal are discussed in great detail in the Web Site Security Center, with information on how they work, how to find the vulnerabilities, and how to fix vulnerabilities so that valuable enterprise data and applications are no longer at risk.

Acunetix was founded to combat the rise in web attacks. Its flagship product, Acunetix Web Vulnerability Scanner, automatically scans a website for vulnerabilities to SQL injection, Cross site scripting, Google hacking & other web attacks. Acunetix is a privately held company with headquarters based in Europe (Malta) and offices in the US and the UK.

[I agree with Acunetix' statement that web site security is still largely overlooked, yet it is not very difficult to deal with. Read Sverre Huseby's Innocent Code as a starter. Then find web developers who have also read and understood it, and employ those to do the work on the assumption that they have developed a security-aware culture. If you need to train your own web coders to be security aware, look at OWASP. --Ed].

Related links: (Open in a new window.)
www.acunetix.com/websitesecurity/
www.acunetix.com

View printable version (opens in new window)
Back

Search ISB News:

Not yet sure you want to subscribe? Download a free sample copy!

Download the much quoted October Editorial

Portal Frontpage
Web Editorial
About This Portal
Contact Info

IS Alerts
General News
Product News
Vendor News
People News
Literature
Events
CHI News

Subscribe Online
About ISB
Publishing in ISB
Advertising in ISB
PR Information

In the current issue:

Security Management
The Importance of Adaptability
Steve Purser

From the Trenches
Reversing Perimeter Defences – a Case Study
Søren Maigaard

Security Architectures
The Self Defending Network: New Trends In ICT Security Infrastructures
Drs. Ing. René Pluis

Subscribe Online!