2014
w3af - Open Source Web Application Security Scanner
w3af is a Web Application Attack and Audit Framework. The project’s goal is to create a framework to help you secure your web applications by finding and exploiting all web application vulnerabilities.
Our framework is proudly developed using Python to be easy to use and extend, and licensed under GPLv2.0.
OWASP / Cross-site request forgery (CSRF ou XSRF)
les failles CSRF au travers de l’OWASP. Vous découvrirez ces failles et apprendrez à les détecter. Vous verrez enfin les moyens de vous en prémunir.
2013
guide to forms based website authentication
by 1 otherHow to log in - How to remain logged in - How to store passwords - Using secret questions - Forgotten password functionality - OpenID - "Remember me" checkbox
- Browser autocompletion of usernames and passwords - Secret URLs (public URLs protected by digest) - Checking password strength - E-mail validation
2009
2007
1
(9 marks)
