Plynt - palisade.plynt.com
General Information:
Latest News:
Quiz: Specifying life time for a webpage 15 Oct 2008 | 06:57 pm
We have often come across the message “Webpage has expired” when attempting to access a recently accessed page. This message comes as a result of the web server specifying an expiration time for the w...
SAP Baseline Security Audit 15 Oct 2008 | 06:42 pm
A SAP Baseline Security Audit tells enterprises how their SAP security posture stacks up against industry best practices. The Baseline Security Audit is the first step in a comprehensive security audi...
Defeating Encryption in Some Thick Clients 15 Oct 2008 | 06:19 pm
While testing thick client applications we sometimes encounter the client encrypting pieces of the request. At such times, many of our variable manipulation attacks are foiled. To overcome this barrie...
Database Links Security 15 Oct 2008 | 06:04 pm
Database links (DBLinks in Oracle) are a technique for one database to connect to a remote database and execute queries. The originating database uses an account in the remote destination database to ...
Quiz: Proposal to amend Same Origin Policy 10 Jul 2008 | 04:46 am
Same origin policy of browser prevents scripts loaded in one domain to access resource from another domain. However, this policy imposes several limitations to Web 2.0 apps and restricts interactivity...
Cache Control Directives Demystified 9 Jul 2008 | 10:43 pm
Many years ago, HTTP 1.1 introduced specialized Cache Control directives to control the behavior of browser caches and proxy caches. These were a refinement over the HTTP 1.0 headers that programmers ...
The Payment Application Data Security Standard (PA DSS) 9 Jul 2008 | 10:38 pm
PA DSS fills a gap in the more well known PCI DSS standard. Today, we’ll discuss this lesser-known standard. Remember that the biggies of the credit card industry put their heads together and came up ...
Defend against Reverse Engineering 9 Jul 2008 | 07:34 pm
Software reverse engineering is the technique of getting the original source code from the binary. Competitors might use reverse engineering to figure out how you implemented that cool feature. Cracke...
Quiz: Cross Site Printing 10 Jun 2008 | 11:30 pm
What is Cross Site Printing? A typo for Cross Site Scripting A new Printing technology from Microsoft A new attack that prints to your internal printers when you visit a website None of these
CSRF - The hidden menace 10 Jun 2008 | 11:00 pm
Cross Site Request Forgery (also known as XSRF, CSRF, Sea Surf, Session Riding, and Cross Site Reference Forgery) is an attack that tricks the victim into taking some action on the vulnerable applicat...