Websec101 – Episode 4 – Authorization

Date July 20, 2009

The next episode of WebSec101 which covers the topic of authorization has been posted to the Foundstone site.

http://www.foundstone.com/websec101/

Although not talked about as much as SQLi or XSS, authorization is the number one flaw you have to make sure your app is not vulnerable to.  Not a lot of technical discussion in this webcast, but a few ideas on how to test for authorization flaws and things to look for that might be an indication of a weak authorization system.

Category Posted in Security, WebSec101


Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>