At Blueinfy, we translate our knowledge and technologies into automated tools. We are having technologies which can address Web Services Security scanning, Application footprinting, Web 2.0 Scanning, Code Scanning, Web/Application fingerprinting etc. We are releasing them as free tools.
As an industry leader in application security space we are invited to speak at various conferences world wide like RSA, HackInTheBox, AusCERT, ISACA, OSCON, Syscan, InfoSecWorld, Bellua etc. Check out where you can find our team next.
Web 2.0 Security - Defending Ajax, RIA and SOA (Thomson)**New**
SOA, RIA, and Ajax are the backbone behind the now widerspread Web 2.0 applications such as MySpace, GoogleMaps, and Wikipedia. Although these robust tools make next generation web applications possible, they also add new security concerns to the field of web application security.
Web Hacking (AWL)
Exposes complete methodologies showing the actual techniques and attacks. Shows countermeasures, tools, and eye-opening case studies.
Hacking Web Services (Thomson)
Great exposure for security professionals, developers and administrators about Web services security issues, methodologies and defense strategies.
Blind SQL injection discovery and exploitation technique [Read Here]**New**
On Source Code Scanning - Disecting and Digging Code for Vulnerabilities [Read Here]**New**
Securing Web Services with ModSecurity 2 [Read Here - Modsecurity]
Web 2.0 Threats and Risks for Financial Services [Read Here - HNS]
Ajax Fingerprinting and Filtering with ModSecurity 2 [Read Here - Modsecurity]
RSS Security Threats With Financial Services [Read Here - HNS]
Scanning Ajax for XSS Entry Points [Read Here - HNS]
Stateful Web Application Firewalls with .NET [Read Here - InformIT]
Ajax Fingerprinting for Web 2.0 Applications [Read Here - HNS]
Detect Your Web Application Vulnerabilities Early with Ruby [Read Here - DevX]
Crawling Ajax-driven Web 2.0 Applications [Read Here - HNS]
XSRF attack vector with Ajax serialization [Read Here - SearchAppSecurity]
Vulnerability Scanning Web 2.0 Client-Side Components [Read Here - SecurityFocus]
Web 2.0 defense with Ajax fingerprinting & filtering [Read Here - Insecure-Magazine]
Top 10 Ajax Security Holes and Driving Factors [Read Here - HNS]
Detecting Web Application Security Vulnerabilities [Read Here - Oreilly]
Hacking Web 2.0 Applications with Firefox [Read Here - SecurityFocus]
Top 10 Web 2.0 attack vectors [Read Here - HNS]
Assessing Web App Security with Mozilla [Read Here - Oreilly]
Protect your applications without recoding them [Read Here - Oreilly]
Web Application Footprinting & Assessment with MSN Search Tricks [Read Here - HITB-eZine]
Infosec World - New Defenses for .NET Web Apps: IHttpModule in Practice
Infosec World - CSRF: The Biggest Little Vulnerability on the Web
DeepSec - Web 2.0 Application Kung-Fu
OWASP - .NET Web Services Attacks and Hacks
(HITB 2007 - KL, Malaysia) Hacking Ajax & Web Services - Next Generation Web Attacks on the Rise
(HITB 2007 - Dubai) Hacking Web 2.0 - Defending Ajax and Web Services
(InfosecWorld 2006 - Florida,USA) Hacking and Securing .NET Apps
(RSA, Europe) Web Services Security Chess
(EUSecwest - London) Advanced Web Hacking
(AusCERT - Australia) Advanced Web Services Hacking
