Tools and Events
At Blueinfy, we translate our knowledge and technologies into automated tools. We are having technologies which can address Web Services Security scanning, Application footprinting, Web 2.0 Scanning, Code Scanning, Web/Application fingerprinting etc. We are releasing them as free tools.
As an industry leader in application security space we are invited to speak at various conferences world wide like RSA, HackInTheBox, AusCERT, ISACA, OSCON, Syscan, InfoSecWorld, Bellua etc. Check out where you can find our team next.
Book Information Page - Web 2.0 Security: Defending Ajax, RIA and SOA
Go to Amazon
SOA, RIA, and Ajax are the backbone behind the now widespread Web 2.0 applications such as MySpace, Google Maps, and Live.com. Although these robust tools make next-generation Web applications possible, they also add new security concerns to the field of Web application security. Yamanner, Sammy, and Spaceflash-type worms are exploiting “client-side” Ajax frameworks, providing new avenues of attack, and compromising confidential information. Portals such as Google, Netflix, Yahoo, and MySpace have witnessed new vulnerabilities. These vulnerabilities can be leveraged by attackers to perform phishing, cross-site scripting (XSS), and cross-site request forgery (CSRF) exploitation. Web 2.0 Security:Defending Ajax, RIA, and SOA covers the new field of Web 2.0 security. Written for security professionals and developers, the book explores Web 2.0 hacking methods and helps in enhancing next-generation security controls for better application security. Readers will gain knowledge in advanced footprinting and discovery techniques; Web 2.0 scanning and vulnerability detection methods; Ajax and Flash hacking methods; SOAP, REST, and XML-RPC hacking; RSS/Atom feed attacks; fuzzing and code review methodologies and tools; and tool building with Python, Ruby, and .NET. The book includes a companion CD-ROM with tools, demos, samples, and images.
BOOK ORGANIZATION
The book addresses several critical aspects of Web 2.0 security. It starts with some fundamental technologies and covers critical security issues as it progresses. Both tactical attack vectors and defense strategies are addressed in detail, while focusing on Web 2.0. Here is the flow of the book in a nutshell.
CHAPTERS 1 AND 2: FUNDAMENTALS AND INTRODUCTION TO WEB 2.0 SECURITY
Understanding Web 2.0 technology vectors and architecture from a higher-level view along with information flow analysis is important. We cover some real-life Web 2.0 applications that offer a better perspective on overall infrastructure. Web 2.0 security concerns are growing, and they have a strategic impact on the application security space. An overview of Web 2.0 technology layers includes client, protocol, structures, and server. It is imperative to understand the working of Ajax and RIA components in the Web browser. Understanding of XML-RPC, SOAP, and REST protocols with frameworks is critical for Web 2.0 security. These chapters include an introduction to structures such as JSON (JavaScript Object Notation), XML, RSS/Atom, and JS-Objects, since they are critical sources for information transfer between the layers. We also include a brief overview of SOA with Web services and related architectures such as Web-oriented architecture (WOA) and SaaS.
CHAPTERS 3 AND 4: SECURITY IMPACT AND ASSESSMENT METHODOLOGIES
We focus on overall Web 2.0 changes and their impact on security. These chapters include an overview of the Web 2.0 security landscape and corresponding changes in the architecture. The Web 2.0 security cycle has evolved on three dimensions: application infrastructure, threats, and countermeasures. Various attack points and vectors are discussed, along with brief overviews. We focus on overall methodologies for security assessment. Blackbox and whitebox methodologies are standard approaches for application review. We discuss these methodologies for Web 2.0 applications and the changes from Web 1.0. These methods can help in building overall attack plans to assess security postures.
CHAPTERS 5 AND 6: FOOTPRINTING, DISCOVERY, PROFILING, AND CRAWLING
Application footprinting is an important step for security assessment. We focus on its methodology. Various footprinting methods such as host, domain, and crossdomain level are important to understand. We discuss Web services footprinting and identifying access points for SOA as well as understanding of application discovery and profiling to identify internal Web 2.0 resources. Web 2.0 application calls are different from traditional calls, and it is important to understand discovery techniques, tools, and browser-based plug-ins. It is possible to drive the instance of the browser from Ruby, which helps in discovery. We cover profiling and crawling methods for Web 2.0 applications and SOA components.
CHAPTERS 7 AND 8: XSS AND CSRF FOR WEB 2.0
We discuss the XSS attack vector and its security implications for Web 2.0 applications. A Web 2.0 application can run with DOM-based XSS, and it is important to detect that. It is possible to inject malicious code in the XSS injection points such as eval(), document.write, and innerHTML. XSS vectors can leverage stream serialization calls with JSON, XML, JS-Scripts, JS-Object, and arrays. CSRF has been around for years, but it gained momentum with the Web 2.0 application framework. CSRF can be accomplished various ways with Web 2.0 applications. CSRF with XML and JSON streams is relatively new, and attackers are bypassing sameorigin policies to get cross-domain access as well.
CHAPTERS 9 AND 10: RSS, MASHUP, WIDGET SECURITY, AND SCANNING METHODS FOR WEB 2.0
One of the key aspects of Web 2.0 applications is cross-domain access and the browser having a same-origin policy to protect the end user. We discuss the impact of this policy and the means to bypass it. We also explore the security concerns growing around RSS, mashup, and widgets. We discuss some scanning tricks for vulnerability detection. Scanning Web 2.0 applications is a challenging task, particularly on the client side since a lot of information and logic are part of JavaScript, and it is difficult to identify those points.
CHAPTERS 11 AND 12: SOA SECURITY AND ATTACK VECTORS
These chapters provide an overview of SOA and the security concerns associated with it. SOA can be divided into various layers and stacks. We explore each of these frameworks and the security threats emerging in each of these layers. SOA can run on SOAP, XML-RPC, or REST. The common factor in all these is XML messaging capabilities. We discuss the impact of these technologies in the security landscape in the era of Web 2.0 and discuss some of the attack vectors in detail with tools to explore possible vulnerabilities residing in the Web services layer.
CHAPTERS 13 AND 14: DEFENSE METHODS AND APPROACHES
It is important to perform vulnerability identification with fuzzing. Different techniques to fuzz Web 2.0 streams such as XML or JSON are discussed. Web application firewalls can help against various attacks, and we need to utilize them for Web 2.0 stream protection. We take a look at ModSecurity for Apache and IHttpModule for the .NET framework, as well as some tricks with which we can identify Ajax-based requests and act upon them on the server side.
CHAPTER 15: TOOLS, TECHNIQUES AND REFERENCES FOR WEB 2.0 SECURITY
In this chapter, we are going to cover some interesting tools, techniques, references, and cheat sheets. This should help developers, auditors, consultants, and administrators do some hands-on work.
Read at Amazon
Go to Amazon
SOA, RIA, and Ajax are the backbone behind the now widespread Web 2.0 applications such as MySpace, Google Maps, and Live.com. Although these robust tools make next-generation Web applications possible, they also add new security concerns to the field of Web application security. Yamanner, Sammy, and Spaceflash-type worms are exploiting “client-side” Ajax frameworks, providing new avenues of attack, and compromising confidential information. Portals such as Google, Netflix, Yahoo, and MySpace have witnessed new vulnerabilities. These vulnerabilities can be leveraged by attackers to perform phishing, cross-site scripting (XSS), and cross-site request forgery (CSRF) exploitation. Web 2.0 Security:Defending Ajax, RIA, and SOA covers the new field of Web 2.0 security. Written for security professionals and developers, the book explores Web 2.0 hacking methods and helps in enhancing next-generation security controls for better application security. Readers will gain knowledge in advanced footprinting and discovery techniques; Web 2.0 scanning and vulnerability detection methods; Ajax and Flash hacking methods; SOAP, REST, and XML-RPC hacking; RSS/Atom feed attacks; fuzzing and code review methodologies and tools; and tool building with Python, Ruby, and .NET. The book includes a companion CD-ROM with tools, demos, samples, and images.
BOOK ORGANIZATION
The book addresses several critical aspects of Web 2.0 security. It starts with some fundamental technologies and covers critical security issues as it progresses. Both tactical attack vectors and defense strategies are addressed in detail, while focusing on Web 2.0. Here is the flow of the book in a nutshell.
CHAPTERS 1 AND 2: FUNDAMENTALS AND INTRODUCTION TO WEB 2.0 SECURITY
Understanding Web 2.0 technology vectors and architecture from a higher-level view along with information flow analysis is important. We cover some real-life Web 2.0 applications that offer a better perspective on overall infrastructure. Web 2.0 security concerns are growing, and they have a strategic impact on the application security space. An overview of Web 2.0 technology layers includes client, protocol, structures, and server. It is imperative to understand the working of Ajax and RIA components in the Web browser. Understanding of XML-RPC, SOAP, and REST protocols with frameworks is critical for Web 2.0 security. These chapters include an introduction to structures such as JSON (JavaScript Object Notation), XML, RSS/Atom, and JS-Objects, since they are critical sources for information transfer between the layers. We also include a brief overview of SOA with Web services and related architectures such as Web-oriented architecture (WOA) and SaaS.
CHAPTERS 3 AND 4: SECURITY IMPACT AND ASSESSMENT METHODOLOGIES
We focus on overall Web 2.0 changes and their impact on security. These chapters include an overview of the Web 2.0 security landscape and corresponding changes in the architecture. The Web 2.0 security cycle has evolved on three dimensions: application infrastructure, threats, and countermeasures. Various attack points and vectors are discussed, along with brief overviews. We focus on overall methodologies for security assessment. Blackbox and whitebox methodologies are standard approaches for application review. We discuss these methodologies for Web 2.0 applications and the changes from Web 1.0. These methods can help in building overall attack plans to assess security postures.
CHAPTERS 5 AND 6: FOOTPRINTING, DISCOVERY, PROFILING, AND CRAWLING
Application footprinting is an important step for security assessment. We focus on its methodology. Various footprinting methods such as host, domain, and crossdomain level are important to understand. We discuss Web services footprinting and identifying access points for SOA as well as understanding of application discovery and profiling to identify internal Web 2.0 resources. Web 2.0 application calls are different from traditional calls, and it is important to understand discovery techniques, tools, and browser-based plug-ins. It is possible to drive the instance of the browser from Ruby, which helps in discovery. We cover profiling and crawling methods for Web 2.0 applications and SOA components.
CHAPTERS 7 AND 8: XSS AND CSRF FOR WEB 2.0
We discuss the XSS attack vector and its security implications for Web 2.0 applications. A Web 2.0 application can run with DOM-based XSS, and it is important to detect that. It is possible to inject malicious code in the XSS injection points such as eval(), document.write, and innerHTML. XSS vectors can leverage stream serialization calls with JSON, XML, JS-Scripts, JS-Object, and arrays. CSRF has been around for years, but it gained momentum with the Web 2.0 application framework. CSRF can be accomplished various ways with Web 2.0 applications. CSRF with XML and JSON streams is relatively new, and attackers are bypassing sameorigin policies to get cross-domain access as well.
CHAPTERS 9 AND 10: RSS, MASHUP, WIDGET SECURITY, AND SCANNING METHODS FOR WEB 2.0
One of the key aspects of Web 2.0 applications is cross-domain access and the browser having a same-origin policy to protect the end user. We discuss the impact of this policy and the means to bypass it. We also explore the security concerns growing around RSS, mashup, and widgets. We discuss some scanning tricks for vulnerability detection. Scanning Web 2.0 applications is a challenging task, particularly on the client side since a lot of information and logic are part of JavaScript, and it is difficult to identify those points.
CHAPTERS 11 AND 12: SOA SECURITY AND ATTACK VECTORS
These chapters provide an overview of SOA and the security concerns associated with it. SOA can be divided into various layers and stacks. We explore each of these frameworks and the security threats emerging in each of these layers. SOA can run on SOAP, XML-RPC, or REST. The common factor in all these is XML messaging capabilities. We discuss the impact of these technologies in the security landscape in the era of Web 2.0 and discuss some of the attack vectors in detail with tools to explore possible vulnerabilities residing in the Web services layer.
CHAPTERS 13 AND 14: DEFENSE METHODS AND APPROACHES
It is important to perform vulnerability identification with fuzzing. Different techniques to fuzz Web 2.0 streams such as XML or JSON are discussed. Web application firewalls can help against various attacks, and we need to utilize them for Web 2.0 stream protection. We take a look at ModSecurity for Apache and IHttpModule for the .NET framework, as well as some tricks with which we can identify Ajax-based requests and act upon them on the server side.
CHAPTER 15: TOOLS, TECHNIQUES AND REFERENCES FOR WEB 2.0 SECURITY
In this chapter, we are going to cover some interesting tools, techniques, references, and cheat sheets. This should help developers, auditors, consultants, and administrators do some hands-on work.
Read at Amazon