Comments on: [Notes]: Web Application Security Testing http://technofriends.in/2008/08/07/notes-web-application-security-testing/ Helping laymen become technology enthusiasts. Thu, 11 Mar 2010 17:45:43 +0000 http://wordpress.org/?v=2.9.1 hourly 1 By: Daniel Craig http://technofriends.in/2008/08/07/notes-web-application-security-testing/comment-page-1/#comment-56041 Daniel Craig Tue, 05 May 2009 15:59:05 +0000 http://technofriends.wordpress.com/?p=846#comment-56041 Hello, I was looking around for a while searching for application security testing and I happened upon this site and your post regarding : Web Application Security Testing | Technofriends, I will definitely this to my application security testing bookmarks! Hello, I was looking around for a while searching for application security testing and I happened upon this site and your post regarding : Web Application Security Testing | Technofriends, I will definitely this to my application security testing bookmarks!

]]> By: Understanding NULL Session Attacks | Technofriends http://technofriends.in/2008/08/07/notes-web-application-security-testing/comment-page-1/#comment-12788 Understanding NULL Session Attacks | Technofriends Wed, 21 Jan 2009 15:51:14 +0000 http://technofriends.wordpress.com/?p=846#comment-12788 [...] Also read: [Notes]: Web Application Security Testing [...] [...] Also read: [Notes]: Web Application Security Testing [...]

]]> By: [Security] Hackers can use HTTP Accept Header to attack your Application | Technofriends http://technofriends.in/2008/08/07/notes-web-application-security-testing/comment-page-1/#comment-11591 [Security] Hackers can use HTTP Accept Header to attack your Application | Technofriends Sat, 17 Jan 2009 05:32:37 +0000 http://technofriends.wordpress.com/?p=846#comment-11591 [...] the Basics of Hacking and Hacking Ruby on Rails Application must have given you a good start with Web Application Security Testing approach. We all have heard a lot about Zero Day IE Exploit, SQL Injection and other various types [...] [...] the Basics of Hacking and Hacking Ruby on Rails Application must have given you a good start with Web Application Security Testing approach. We all have heard a lot about Zero Day IE Exploit, SQL Injection and other various types [...]

]]> By: [How-To] Make sure that your websites works with different browsers « Technofriends http://technofriends.in/2008/08/07/notes-web-application-security-testing/comment-page-1/#comment-3177 [How-To] Make sure that your websites works with different browsers « Technofriends Tue, 18 Nov 2008 10:29:36 +0000 http://technofriends.wordpress.com/?p=846#comment-3177 [...] Also read: [Notes]: Web Application Security Testing [...] [...] Also read: [Notes]: Web Application Security Testing [...]

]]> By: Some notes on Ethical Hacking « Technofriends http://technofriends.in/2008/08/07/notes-web-application-security-testing/comment-page-1/#comment-3178 Some notes on Ethical Hacking « Technofriends Tue, 07 Oct 2008 07:20:57 +0000 http://technofriends.wordpress.com/?p=846#comment-3178 [...] Black Box: You have NO knowledge of the system infrastructure. As a Ethical hacker, this should be the one that can help you see things from a hacker’s perspective as you like the hacker doesnt have any initial knowledge about the system. ( Also read: Notes on Web Application testing) [...] [...] Black Box: You have NO knowledge of the system infrastructure. As a Ethical hacker, this should be the one that can help you see things from a hacker’s perspective as you like the hacker doesnt have any initial knowledge about the system. ( Also read: Notes on Web Application testing) [...]

]]> By: Serial Numbers and CD Keys of Softwares brought to you by Google. « Technofriends http://technofriends.in/2008/08/07/notes-web-application-security-testing/comment-page-1/#comment-3180 Serial Numbers and CD Keys of Softwares brought to you by Google. « Technofriends Sat, 09 Aug 2008 09:58:36 +0000 http://technofriends.wordpress.com/?p=846#comment-3180 [...] [Notes]: Web Application Security Testing [...] [...] [Notes]: Web Application Security Testing [...]

]]> By: [How-To] Find if your wireless network is getting used for illegal purposes « Technofriends http://technofriends.in/2008/08/07/notes-web-application-security-testing/comment-page-1/#comment-3179 [How-To] Find if your wireless network is getting used for illegal purposes « Technofriends Fri, 08 Aug 2008 13:36:49 +0000 http://technofriends.wordpress.com/?p=846#comment-3179 [...] [Notes]: Web Application Security Testing [...] [...] [Notes]: Web Application Security Testing [...]

]]> By: tuanbach http://technofriends.in/2008/08/07/notes-web-application-security-testing/comment-page-1/#comment-3181 tuanbach Thu, 07 Aug 2008 09:20:08 +0000 http://technofriends.wordpress.com/?p=846#comment-3181 Hi, I agree with you but I think we cannot say that one method is more efficient than the other. Because the whitebox test lead you to think as a maker (I mean a programmer) and the second method lead you to think as a hacker. The results are not the same of course, but sometime things could be easier to see as a hacker, and sometimes it's the contrary. As you said at the end, the best way is to test with both methods. regards, Tuan Hi,
I agree with you but I think we cannot say that one method is more efficient than the other. Because the whitebox test lead you to think as a maker (I mean a programmer) and the second method lead you to think as a hacker. The results are not the same of course, but sometime things could be easier to see as a hacker, and sometimes it’s the contrary.

As you said at the end, the best way is to test with both methods.

regards,
Tuan

]]>