Its All About Ethics
Vulnerabilities in Ruby-on-Rails Framework & How to prevent it: Ruby-on-rails—it’s modular, easy-to-read, and broadly supported by legions of loyal developers. Many of the world’s most trafficked websites have relied on Rails to deliver scalable and highly available web services. As per the CVE database: Arbitrary file existence disclosure in Sprockets CVE 2015-7819 Available as Ruby…
Vulnerabilities in play Framework Http only cookie bypass CVE-2015-2156 Description A vulnerability has been found in Play’s cookie handling code that could allow an attacker to bypass the httpOnly flag on sensitive cookies. Impact Any Play apps that reflect cookie values back into the body of a response are vulnerable to this. One example of when this…
Vulnerabilities in meteor framework Meteor, or MeteorJS, is a free and open source isomorphic JavaScript web framework written using Node.js. Meteor allows for rapid prototyping and produces cross-platform (Android, ios, web) code. It integrates with MongoDB and uses the distributed data protocol and a publish subscribe pattern to automatically propagate data changes to clients without requiring the developer to write any…
Vulnerabilities in angular js framework What is angularjs ? Angular JS is a framework by Google (originally developed by Misko Hevery and Adam Abrons) which helps us in building powerful Web Apps. It is a framework to build large scale and high performance web application while keeping them as easy-to-maintain. Vulnerabilities in angular js Security…
RCIE Course Modules: 3.10 Securing Email Servers Compliance What is email server security compliance? Securing your corporate email server is one of the most important aspects of ensuring compliance. With the rise in cyber-threats and the focus on phishing and malware, there is stronger need for deeper compliance in the email domain. With advanced tools…
DJango Framework: – INTRODUCTION: – Django is a high-level Python Web framework that encourages rapid development and clean, pragmatic design. Worked by experienced developers,it deals with tackling the different issues found during web development, so we can center around on building our app without thinking about recreating the whole cycle. [2] Django is a free…
The notorious targets for all sorts of cyber attacks can be zeroed down to the web applications. The increasing pattern of cyber attacks has led us, to not just inculcate cyber security as a luxury, rather as a necessity for all the web developers and above all for those developers who are responsible for building…
INFORMATION GATHERING ( REDHAWK ) USING KALI Basic Reconnaisance: GEO-IP LOOKING GRAB BANNERS: DNS LOOKUP: SUBNET CALCULATOR: NMAP PORT SCANNING: SUBDOMAIN: