Latest Feature

Using SQLMap for Automated Vulnerability Assessment

Tags: audit, hacking, pen testing, security, sql injection, target enumeration, tools

Vulnerability assessors and code auditors are often faced with situations where a large volume of code needs to be audited quickly to enable a deployment. In these situations large web applications need to be reviewed in a fast and efficient manner. Although a code level analysis is often the most effective way to analyse the security of an application it is a time consuming process and not all practical. In these situations testers often turn to automated tools to help discover vulnerabilities.  Read more...

Subscribe to RSS Get notification of new features.

Recent Stories

Document icon Security Evaluation of NanoCMS
NanoCMS (http://nanocms.in) is a PHP based Content...
Document icon Hardening PHP from php.ini
PHP's default configuration file, php.ini (usually...
Document icon Writing Safer Database Queries from PHP
Database interaction is a critical component of most...
Document icon Security Evaluation of Frog CMS
Frog CMS (http://www.madebyfrog.com/) is a lightweight...
Document icon Interrogating DNS
DNS (Domain Name System) is an important component...

Announcements

March 31st, 2009

I've started a new LAMP security project at SourceForge.net that is essentially a distribution point for various virtual machines designed for capture the flag type exercises. So far there are two CTF exercises posted, each with full documentation if you need a tutorial. Each one can be run using VMWare's free player on pretty much any platform.

February 19th, 2009

I'm disabling the article comments - they're generating 90% spam and a lot of overhead on my connection which is generally annoying me. Apologies to anyone who might miss the functionality (a diminutive minority I'm sure).

April 2nd, 2008

I'm making active strides to post more often and focus the site towards computer security. Instead of just posting 'how-to' articles and tutorials I'm also going to try and put more editorial content into the site. Hopefully this shift will provide more meaningful content to the security conscious audience.

Quick Tips

There often comes a time when you wish to get rid of older computer hardware. Sometimes you're getting a new computer, sometimes you're just buying a new hard drive, but whatever the reason, you should stop and pause before simply tossing your old hard drive or selling your computer online. Depending on your usage habits your hard drive could contain lots of sensitive personal and financial information. You should take steps to destroy that data before letting anyone else get a hold of your hard drive. more

Blog Posts