The developerWorks Connections platform will be sunset on December 31, 2019. On January 1, 2020, this blog will no longer be available. More details available on our FAQ.Blogs
Blogs
Matching:
struts
X
X
| Display: |
Which JSP Is Used When Handling XSS Instructions?
Cross-site scripting protection is enabled by default in WebSphere Commerce and Commerce On Cloud, and the default error page for prohibited characters is ProhibitedCharacterError.jsp. If you're testing for prohibited characters and you're...
from Blog: CSE-WebSphere Commerce
Modified on by Shant Minassians
|
|
Don't be a storage exhibitionist!
seb_
Tags:
ip
ibm
svc
san
storwize
apache
attacker
security
bulletin
deletion
struts
controller
vulnerability
exposure
volume
fud
1 Comment
17,730 Views
Last week IBM released a security bulletin named " Unauthorized access exposure on IBM SAN Volume Controller and Storwize Family ". It's about vulnerabilities in Apache Struts that could...
from Blog: Storageneers
Modified on by seb_
|
|
The AppScan Appliance - Proof Of Concept Definition Community Blog
sp1r0
Tags:
mvc
static_analysis
appscan_appliance
struts
spring
url_mapping
ounce
dynamic_analysis
appscan_source
results
correlation
wafl
frameworks
appscan_for_analysis
appscan
findings
appscan_correlation
sp1r0
findings_viewer
o2
9,388 Views
The AppScan Appliance – Proof Of
Concept Architecture and Application Security Process Following some great feedback I
received on my previous post regarding the concept of an AppScan Security Appliance, How The Mainframe Can Transform Application Security ,...
from Blog: AppScan Tricks And Tools
|
|
Downloading AppScan Evaluation Software - which is what? Community Blog
sp1r0
Tags:
appscan_for_analysis
findings_viewer
ounce
appscan
appscan_appliance
struts
spring
o2
results
findings
static_analysis
wafl
dynamic_analysis
sp1r0
frameworks
correlation
appscan_correlation
appscan_source
mvc
installation
downloads
8,205 Views
In his recent post on obtaining the various installation packages for a complete installation of the AppScan product suite: AppScan Eval Downloads and What is What Dinis makes a good point about the confusion that one can encounter when moving from earlier...
from Blog: AppScan Tricks And Tools
|
|
East Coast Prowler - Snowoarding in tight trees to Iron Maiden Community Blog
sp1r0
Tags:
jn14net
injection
java
encoding
visual_studio
hijacking
validation
wafl
laser
taint
sink
ian_spiro
spring
struts
kernel
killington
source
frameworks
snowboarding
mvc
taint_propagators
vermont
github
callbacks
o2platform
1 Comment
9,544 Views
I want to interrupt the normal technical programming on this channel to interject something of true importance to me: SNOWBOARDING Here is a link to a video I threw together over the Holiday break of a couple of days of powder in some tight trees in...
from Blog: AppScan Tricks And Tools
|
|
Hijacking Windows Handles - Fun for the Whole Family Community Blog
sp1r0
Tags:
fortify
sink
github
handles
spring
encoding
o2platform
mvc
taint_propagators
wafl
struts
hijacking
static_analysis
checkmarx
kernel
handle_hijacking
source
windows
jn14net
validation
taint
callbacks
java
frameworks
11,104 Views
As promised in the overview of this
blog, I am going to being demonstrating / releasing some utilities
that push the limits of what is normally considered possible in a
windows environment.
This should be considered both an
effort to educate the...
from Blog: AppScan Tricks And Tools
|
|
AppScan Source Trace Stitiching Community Blog
sp1r0
Tags:
fortify
struts
findings_viewer
o2platform
sp1r0
frameworks
java
static_analysis
ounce
appscan
fuzzing
findings
jn14net
github
appscan_for_analysis
checkmarx
spring
fxcop
o2
mvc
development
kernel
results
appscan_source
fluentsharp
10,179 Views
Difficult
to present Findings with Disconnected Data-Flows Any time I've found
myself faced with a real-world, web application, scanning and
presenting the AppScan Source Edition Findings, I always arrive
at the point at which I have Triaged, Analyzed,...
from Blog: AppScan Tricks And Tools
|
|
AppScan Source Edition Findings Viewer Utility Community Blog
sp1r0
Tags:
struts
fuzzing
spring
results
ounce
development
sp1r0
static_analysis
fortify
findings
github
appscan_source
mvc
java
kernel
fluentsharp
fxcop
findings_viewer
frameworks
appscan
jn14net
o2platform
checkmarx
o2
appscan_for_analysis
10,233 Views
An Easy Way To View AppScan Source
Findings from Multiple .ozasmt Files For many years now, I have been dealing with the tens of
thousands of Findings that are generated from an average size web
application scanned with AppScan Source Edition. Although...
from Blog: AppScan Tricks And Tools
|
|
Multiple Access of pages in Struts Community Blog
It's been a long time I've been playing with struts framework or rather I should say Struts is playing with me :). going to discuss one of issue with to and fro navigation issues with struts. Let's say, we have a chain of jsps which gets called in series....
from Blog: Java Technology Community
|
