robert681
- Karma
- 75
- Created
- July 24, 2013 (12y ago)
- Submissions
- 0
- Passwords vs. Pass Phrases – An Ideological Divide (netsparker.com)
Are we taking the right approach to solving existing password problems?
- First Tracking Plugin to Support WordPress Multisite (wordpress.org)
A plugin that can track all activity on a WordPress multisite network installation (the first one to date if I am not mistaken)
- What changed and what is new in PCI DSS 3.0? (mavitunasecurity.com)
Learn what changed and what is new in the new PCI DSS 3.0 guidelines and how it can impact your business and security operations
- Fake Google SSL Certs used by French Gov to spy on French citizens (thehackernews.com)
The French government created fake Google SSL certificates to do a man in the middle attack on its own citizens and spy on them while using Google
- Cool Concept - Invisible Two-Factor Authentication for WordPress (wpwhitesecurity.com)
A cool new concept of two-factor authentication mechanism. Implemented on WordPress via a plugin, but service also available via an API for other web applications
- How to configure WordPress Automatic Updates (wpwhitesecurity.com)
WordPress automatic updates are now available. This tutorial explains how to configure them and how to use filters to fine tune them.
- How fast is your Web Application Security Scanner? (websecurityscanners.com)
A simple explanation on how to choose the fastest (and most cost effective) web application security scanner.
- PCI Compliance - The Good, The Bad, and The Insecure (mavitunasecurity.com)
Although PCI compliance has become popular, it has several shortcomings hence PCI compliant web applications (and businesses) are still getting hacked. Read all about its shortcomings.
- How to evaluate Web Application Security Scanners (mavitunasecurity.com)
A complete guide on how to evaluate web application security scanners based on your own requirements.
- Top Mistakes when doing a Web Vulnerability Assesssment (mavitunasecurity.com)
Here is a list of top 10 most common mistakes both experts and not do when doing a web vulnerability assessment. If you avoid these 10 mistakes, you'll be able to successfully identify all web security vulnerabilities.
- Statistics Show Why WordPress is a Popular Hacker Target (wpwhitesecurity.com)
A research shows that more than 70% of the most popular WordPress websites (in Alexa top 1 million sites) are vulnerable to automated hacker attacks.
- WordPress Security Based on Facts and Statistics (wpmayor.com)
Once you know more about the most common WordPress hack attacks it will be easy to improve your WordPress security and protect your blog or website from such attacks.
- WordPress 3.6.1 Maintenance & Security Release - Upgrade Now (wordpress.org)
Upgrade your WordPress to 3.6.1. This new release is a maintenance and Security release; contains fixes for security vulnerabilities in WordPress
- 2 WordPress Database Tools every Security Professional Should Know Of (wpwhitesecurity.com)
With BigDump you can overcome those phpMyAdmin file size upload limit and Web Server execution timeout. With Search and Replace you can replace data in WordPress databases without breaking the integrity of the database.
- SQL Injection – Understanding and Protection (mavitunasecurity.com)
This security article contains development tips on how to write more secure web application code and also admin tips to help webmasters take proper security measures to protect their web applications from SQL injection…
- Why web application security testing should be automated (mavitunasecurity.com)
Because web applications have become really complex and large, it has become almost impossible to detect vulnerabilities in web applications unless you use automated tools.
- How to Tell if WordPress is Hacked (wpwhitesecurity.com)
Here are some pointers which you can follow to help you tell if your WordPress is hacked. The earlier you find out, the less damage is done and the easier it is to recover.
- Email Address Disclosure Vulnerability in Pinterest (websecurityscanners.com)
When I explain to people that these type of vulnerabilities still exist in today's modern and complex web applications, they laugh at me because they do not believe it.
- Netsparker - A False-Positive-Free Web Application Security Scanner (mavitunasecurity.com)
Netsparker web application security scanner automatically exploits detected vulnerabilities to ensure no false positives are reported.
- 14 Years of SQL Injection and still the most dangerous vulnerability (mavitunasecurity.com)
SQL injection has been around for 14 years and it is still the most dangerous and widely exploited web application vulnerability. Ever wondered why?
- The problem of False Positives in Web Application Security (mavitunasecurity.com)
False Positives are a big problem in web application security and typically they hinder the process of securing a web application. Read more about false positives and how to tackle them, or better, avoid them!
- New version of WP Security Audit Log Plugin includes new features and updates (wpwhitesecurity.com)
With the new version of WP Security Audit Log plugin you can keep better track of what is happening on your WordPress blog and websites and identify any issues before they become WordPress problems.
- Businesses should use automated tools to detect web application vulnerabilities (mavitunasecurity.com)
There are several benefits to using automated web application security scanners to detect vulnerabilities.
- What is new and what changed in OWASP Top 10 for 2013 (mavitunasecurity.com)
In case you missed their release some time ago, here is a blog post explaining what is new and what changed in this year's OWASP Top 10.