Skip to main content

Home/ Information Security/ Group items tagged web

Rss Feed Group items tagged

Filter: All | Bookmarks | Topics Simple Middle
1More

curso de seguridad en redes - 0 views

www.iicybersecurity.com curso de seguridad en redes
shared by Devid Thomas on 25 Apr 15 - No Cached
  • Devid Thomas on 25 Apr 15
     
    Cuando usted está tratando de construir un sitio web seguro o una aplicación web, que ayuda a ver el problema a través de los ojos del adversario, para comprender las debilidades que pueden ser utilizados para atacar a un sitio web. A través de ejercicios prácticos de curso de seguridad en redes, este curso de vídeo 3 horas que le mostrará varias de las deficiencias más comunes y cómo pueden ser explotadas por un atacante - en este caso, usted. Después de aprender esto de international institute of cyber security, usted estará mejor preparado para proteger sus propios, sus clientes o sitios web de su empleador de este tipo de ataques. Durante el curso de seguridad en redes echamos un vistazo más de cerca a la Burp Suite Ubicación del sitio y la araña. Este módulo cubre luego pasar por los controles del lado del cliente, Cross-Site Scripting (XSS), y cómo utilizar XSS almacenado desfigurar un sitio web. En este punto, usted ha aprendido acerca de la explotación. En este módulo se discute cómo encontrar realmente estas vulnerabilidades, ofreciendo un sencillo proceso paso a paso.
3More

Technology Review: Mapping the Malicious Web - 0 views

www.technologyreview.com/...24705 Fireshark security monitoring software web connections
shared by Skeptical Debunker on 11 Mar 10 - Cached
  • Now a researcher at Websense, a security firm based in San Diego, has developed a way to monitor such malicious activity automatically. Speaking at the RSA Security Conference in San Francisco last week, Stephan Chenette, a principal security researcher at Websense, detailed an experimental system that crawls the Web, identifying the source of content embedded in Web pages and determining whether any code on a site is acting maliciously. Chenette's software, called FireShark, creates a map of interconnected websites and highlights potentially malicious content. Every day, the software maps the connections between nearly a million websites and the servers that provide content to those sites. "When you graph multiple sites, you can see their communities of content," Chenette says. While some of the content hubs that connect different communities could be legitimate--such as the servers that provide ads to many different sites--other sources of content could indicate that an attacker is serving up malicious code, he says. According to a study published by Websense, online attackers' use of legitimate sites to spread malicious software has increased 225 percent over the past year.
  • Skeptical Debunker on 11 Mar 10
     
    Over the past couple of years, cybercriminals have increasingly focused on finding ways to inject malicious code into legitimate websites. Typically they've done this by embedding code in an editable part of a page and using this code to serve up harmful content from another part of the Web. But this activity can be difficult to spot because websites also increasingly pull in legitimate content, such as ads, videos, or snippets of code, from outside sites.
21More

Plugging the CSS History Leak at Mozilla Security Blog - 0 views

blog.mozilla.com/...plugging-the-css-history-leak security web history mozilla online browsers privacy bugfix
shared by Seçkin Anıl Ünlü on 17 Apr 10 - Cached
  • History Sniffing
  • Links can look different on web sites based on whether or not you’ve visited the page they reference.
  • The problem is that appearance can be detected by the page showing you links, cluing the page into which of the presented pages you’ve been to. The result: not only can you see where you’ve been, but so can the web site!
  • ...18 more annotations...
  • The most obvious fix is to disable different styles for visited versus unvisted links, but this would be employed at the expense of utility: while sites can no longer figure out which links you’ve clicked, neither can you.
  • David Baron has implemented a way to help keep users’ data private while minimizing the effect on the web, and we are deploying it to protect our users.
  • The biggest threats here are the high-bandwidth techniques, or those that extract lots of information from users’ browsers quickly.
  • The JavaScript function getComputedStyle() and its related functions are fast and can be used to guess visitedness at hundreds of thousands of links per minute.
  • we’re approaching the way we style links in three fairly subtle ways:
  • Change 1: Layout-Based Attacks
  • First of all, we’re limiting what types of styling can be done to visited links to differentiate them from unvisited links.
  • can only be different in color
  • the CSS 2.1 specification takes into consideration how visited links can be abused:
  • implement other measures to preserve the user’s privacy while rendering visited and unvisited links differently
  • Change 2: Some Timing Attacks
  • we are changing some of the guts of our layout engine to provide a fairly uniform flow of execution to minimize differences in layout time for visited and unvisited links.
  • when the link is styled, the appropriate set of styles is chosen making the code paths for visited and unvisited links essentially the same length.
  • Change 3: Computed Style Attacks
  • JavaScript is not going to have access to the same style data it used to.
  • Firefox will give it unvisited style values.
  • it’s the right trade-off to be sure we protect our users’ privacy.
  • fixing CSS history sniffing will not block all of these leaks. But we believe it’s important to stop the scariest, most effective history attacks any way we can since it will be a big win for users’ privacy.

Website Designing Company in Hyderabad - 0 views

started by maarusatechno on 29 Jul 16 no follow-up yet

Website Development Company in Hyderabad - 0 views

started by maarusatechno on 16 Jul 16 no follow-up yet

Website Development Company in Hyderabad - 0 views

started by maarusatechno on 16 Jul 16 no follow-up yet

Website Development Company in Hyderabad - 0 views

started by maarusatechno on 04 Jul 16 no follow-up yet

Website Development Company in Hyderabad - 0 views

started by maarusatechno on 27 Jun 16 no follow-up yet
2More

Web Posts May Make You Vulnerable To Crime : NPR - 0 views

www.npr.org/...story.php risk location social networking publication PleaseRobMe.com
shared by Skeptical Debunker on 25 Feb 10 - Cached
  • Skeptical Debunker on 25 Feb 10
     
    It's fun to brag when you're at a great bar or going off on vacation. Social networking sites and location-based apps have made it easy to broadcast that kind of information to your friends. The problem is that you may not just be making your friends jealous, but supplying criminals with useful information as well. A new Web site called PleaseRobMe.com has drawn attention to the issue by repurposing posts from foursquare, a social networking site that lets people share the latest about their whereabouts. PleaseRobMe demonstrates that it's easy for anyone to find out you're not at home - and therefore, are presenting an "opportunity" for burglary. "There are physical and economic safety risks when you're publicizing to the world where you are," says Kevin Bankston, a senior staff attorney with the Electronic Frontier Foundation. "It's obviously a treasure trove of information for criminals. PleaseRobMe is a good demonstration of how easy it is."
3More

Google Argues That Chinese Censorship Was "Trade Dispute" - ITProPortal.com - 0 views

www.itproportal.com/...e-censorship-was-trade-dispute Google China censorship trade dispute
shared by Skeptical Debunker on 03 Mar 10 - Cached
  • Bloomberg.com has reported that the Obama administration is planning to launch an official complaint against China with the World Trade Organisation (WTO) pertaining to the country's stringent web censorship policies. Illinois Senator Richard Durbin has announced that he plans to pass a legislation that will allow the government to prosecute US internet companies if they violate the human rights of their customers when a foreign government asks them to do so. 
  • Skeptical Debunker on 03 Mar 10
     
    A Google representative has announced that the web censorship policies adopted by China can be classified as 'Trade Dispute' as local companies benefit when the government restricts the operations of foreign companies.

Website Designing Company in Hyderabad - 0 views

started by maarusatechno on 26 Jul 16 no follow-up yet

Website Designing Company in Hyderabad - 0 views

started by maarusatechno on 04 Jul 16 no follow-up yet

UI/UX Designing Company in Hyderabad - 0 views

started by maarusatechno on 04 Jul 16 no follow-up yet

website development company in hyderabad - 0 views

started by maarusatechno on 06 Jul 16 no follow-up yet

website development company in hyderabad - 0 views

started by maarusatechno on 06 Jul 16 no follow-up yet

website development company in hyderabad - 0 views

started by maarusatechno on 06 Jul 16 no follow-up yet

UI/UX Designing Company in Hyderabad - 0 views

started by maarusatechno on 21 Jun 16 no follow-up yet
1More

Video Web Camera Surveillance - 3 views

magic.piktochart.com/...ial-business-security-edmonton wireless security system internet camera Edmonton
shared by Select Security Systems Ltd on 30 Jun 16 - No Cached
  • Select Security Systems Ltd on 30 Jun 16
     
    Video web camera surveillance services can now be availed from us at Select Security. We have the expertise to facilitate your needs through our skilled services. Get connected and explore more today!
1 - 20 of 54 Next › Last »
Showing 20 items per page