path manipulation whitelist

WAF Defense Capability Evaluation and tools This article describes how to evaluate a WAF from the defense capability of conventional attacks. A total of 16 attack types are covered, each of which ranges from the Use scenario (The purpose of the

The document did last year, supposedly should be updated, not well written, some did not write the whole, referring to a lot of documents. Say Owasp Codereview, also should out 2.0. The cows were passing by, giving some advice. Directory 1.

The author of the spring and autumn--the Somalia of the Sea ThiefObjectiveThe last time (http://bbs.ichunqiu.com/thread-13714-1-1.html) spoke of several key concerns in rapid vulnerability mining, command execution, file manipulation, and SQL

InjectionAttacks-Log injection (also called Log file injection) Many applications maintain a series of logs for authorized users and displayed on the HTML interface. as a result, they become the primary targets of attackers who attempt to disguise

Huaneng Group under the Enterprise website of a power plant (based on asp.net2.0 implementation, not allowed to modify the source program) requirements to achieve "factory users can directly access the entire site of all pages, outside the factory

Webpage Design and Production Course homepage and Webpage Design and ProductionIntroduction In order to stimulate the enthusiasm of the majority of children's shoes, make our learning more close to our future work needs, and easily record the

Huaneng Group under the Enterprise website of a power plant (based on asp.net2.0 implementation, not allowed to modify the source program) requirements to achieve "factory users can directly access the entire site of all pages, outside the factory

Common Web Application Security issues after two articles ("The hierarchical relationship between Web security issues" and "the nature of Web application Security issues"), the macro introduction of the concept of web security and Web application

PHP is not only a rich language, it can also help developers easily create a better network environment. In order to further help developers, small series will share with you some free and high-quality PHP class library, hope to be able to help