VAPT

Vulnerabilities in play Framework

Vulnerabilities in play Framework Http only cookie bypass CVE-2015-2156 Description A vulnerability has been found in Play’s cookie handling code that could allow an attacker to bypass the httpOnly flag on sensitive cookies. Impact Any Play apps that reflect cookie values back into the body of a response are vulnerable to this. One example of when this…

VAPT

Vulnerabilities in meteor framework

Vulnerabilities in meteor framework Meteor, or MeteorJS, is a  free and open source isomorphic JavaScript web framework written using Node.js. Meteor allows for rapid prototyping and produces cross-platform (Android, ios, web) code. It integrates with MongoDB and uses the distributed data protocol and a  publish subscribe pattern to automatically propagate data changes to clients without requiring the developer to write any…

VAPT

Vulnerabilities in Angular js Framework

Vulnerabilities in angular js framework What is angularjs ? Angular JS is a framework by Google (originally developed by Misko Hevery and Adam Abrons) which helps us in building powerful Web Apps. It is a framework to build large scale and high performance web application while keeping them as easy-to-maintain. Vulnerabilities in angular js Security…

VAPT

Securing Email Servers Compliance

RCIE Course Modules: 3.10 Securing Email Servers Compliance What is email server security compliance? Securing your corporate email server is one of the most important aspects of ensuring compliance. With the rise in cyber-threats and the focus on phishing and malware, there is stronger need for deeper compliance in the email domain. With advanced tools…

VAPT

Penetration-TestingDJango Framework

DJango Framework: – INTRODUCTION: – Django is a high-level Python Web framework that encourages rapid development and clean, pragmatic design. Worked by experienced developers,it deals with tackling the different issues found during web development, so we can center around on building our app without thinking about recreating the whole cycle. [2] Django is a free…

VAPT

Fundamentals Of Security Headers

The notorious targets for all sorts of cyber attacks can be zeroed down to the web applications. The increasing pattern of cyber attacks has led us, to not just inculcate cyber security as a luxury, rather as a necessity for all the web developers and above all for those developers who are responsible for building…