"web applications" tag
Samurai

Web Application Penetration Testing Using Samurai

This article introduces you to penetration-testing of Web applications. Also included is some hands-on work with a Web-testing framework called Samurai. Penetration testing, affectionately called pen-testing, involves testing a piece of software, or…

Secured!

Securing Apache, Part 9: Attacks that Target PHP-based Instances

Beginning with Part 1 of this series, we have covered all major attacks on Web applications and servers, with examples of vulnerable PHP code. In this article, we will cover those attacks that…

Securing Database Servers

Securing Database Servers

With the ever-expanding data requirements for Web applications, database administrators often configure security parameters at the OS and database layer. Unfortunately, administrators seldom consider implementing security at a network layer to protect the…

Secured!

Securing Apache, Part 8: DoS & DDoS Attacks

In this part of the series, we focus on DoS/DDoS attacks, which have been among the major threats to Web servers since the beginning of the Web 2.0 era. Denial of Service (DoS)…

Web frameworks

All You Need to Know About Web Application Frameworks

Jargon fills our everyday lives on the Internet. The days when HTML and JavaScript used to be “cool” technologies are long gone. They are still very much an underlying part of the Net,…

Getting started with Clojure

Getting Started with Clojure

Clojure is a dynamic, general purpose programming language that targets the Java Virtual Machine (JVM) and the Common Language Runtime (CLR). It is designed for work and play. If you play around with…

Web application testing time...

The Selenium Web Application Testing Framework

The more Web applications we use, the more tools are needed to automate the testing process, for which there are many options that simplify the process. Since testing processes and methods vary from…

Locked!

Securing Apache, Part 7: Fool-proofing the Server OS

Moving deeper into Web application and Apache security, let’s now focus on OS commanding attacks, and those that lead to the disclosure of crucial information and server directory paths. The attacks described below…

lighttpd + SQLite

lighttpd & SQLite: A Lightweight Web Server and Database Platform

This article demonstrates the setting up of a lightweight Web server and database platform, using the lighttpd Web server and the SQLite database management system (DMS) instead of the LAMP stack. These two…

WordPress plugin development

WordPress Plugin Development Basics

WordPress is by far one of the best content management systems, with a fantastic framework for customisation. The use of plugins, themes and multi-site options has made it very attractive. In this article,…

All published articles are released under Creative Commons Attribution-NonCommercial 3.0 Unported License, unless otherwise noted.
Open Source For You is powered by WordPress, which gladly sits on top of a CentOS-based LEMP stack.

Creative Commons License.