About nixCraft

Topics

Security: Hacking Web 2.0 Applications with Firefox

Posted by Vivek Gite [Last updated: October 13, 2006]

Shreeraj Shah has published an article at SecurityFocus.

AJAX and interactive web services form the backbone of "web 2.0" applications. This technological transformation brings about new challenges for security professionals.

This article looks at some of the methods, tools and tricks to dissect web 2.0 applications (including Ajax) and discover security holes using Firefox and its plugins. The key learning objectives of this article are to understand the:

=> web 2.0 application architecture and its security concerns.
=> hacking challenges such as discovering hidden calls, crawling issues, and Ajax side logic discovery.
=> discovery of XHR calls with the Firebug tool.
=> simulation of browser event automation with the Chickenfoot plugin.
=> debugging of applications from a security standpoint, using the Firebug debugger.
=> methodical approach to vulnerability detection.

Read more at SecurityFocus...

Tell us how we're doing: Please answer a few questions about your experience to help us improve nixCraft.

You may also be interested in other helpful articles:

Leave a Reply

We encourage your comments, and suggestions. But please stay on topic, be polite, and avoid spam. Thank you very much for stopping by our site!

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Click to hear an audio file of the anti-spam word

Copyright © 2004-2008 nixCraft. All rights reserved - TOS/Disclaimer - Privacy policy - Sitemap - Powered by Open source software.