security

Web Security Attacks

November 5, 2010

•Abuse of Functionality

•Brute Force

•Buffer Overflow

•Content Spoofing

•Credential/Session Prediction

•Cross-site Scripting

•Denial of Service

•Directory Indexing

•Format String Attack

•Information Leakage

•Insufficient Anti-automation

•Insufficient Authentication

•Insufficient Authorization

•Insufficient Process Validation

•Insufficient Session Expiration

•LDAP Injection

•OS Commanding

•Path Traversal

•Predictable Resource Location

•Session Fixation SQL Injection

•SSL Injection

•Weak Password

•Recovery Validation

•XPathInjection

•Fingerprinting

•HTTP Response Splitting

www.bestitdocuments.com