[Full-disclosure] Paper - Dissecting Java Server Faces for Penetration Testing
- From: SecNiche Security Labs <0kn0ck@xxxxxxxxxxxx>
- Date: Thu, 25 Aug 2011 22:18:05 -0400
Hi
This paper sheds light on the findings of security testing of Java
Server Faces. JSF has been widely used as an open source web framework
for developing efficient applications using J2EE. JSF is compared with
ASP.NET framework to unearth potential security flaws.
Link : http://www.secniche.org/jsf/dissecting_jsf_pt_aks_kr.pdf
Aditya K Sood
SecNiche Security Labs
http://www.secniche.org
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Follow-Ups:
- Prev by Date: [Full-disclosure] Paper - Dissecting Java Server Faces for Penetration Testing
- Next by Date: Re: [Full-disclosure] HTTPKiller - (Global HTTP DoS)
- Previous by thread: [Full-disclosure] Paper - Dissecting Java Server Faces for Penetration Testing
- Next by thread: Re: [Full-disclosure] Paper - Dissecting Java Server Faces for Penetration Testing
- Index(es):
Relevant Pages
|
