IOSEC.IN

Web Security

Is your CAPTCHA Strong enough !!

We have seen a lot of DoS (Denial of Service) attacks in recent times. An old but promising solution to DoS attacks in web applications is to have CAPTCHA implemented in the publicly available form/pages. However, all CAPTCHA implementations are not quite safe, and some implementations would give the user a headache. There are recent…

Shekhar Suman01 mins

Mobile Application Security

11 years ago

iOS Mobile Application Security Assessment for Beginners

Why Mobile Application Security? With the ever increasing penetration of Mobile apps into our day to day life, it’s imperative that Mobile Applications will be at the behest of hackers and Security professionals likewise. Thanks to phenomenal advances in mobile device capabilities, everything from shopping, banking, recharge, booking tickets and many such activities are performed…

Shekhar Suman01 mins

Web Security

11 years ago

Understanding and Testing Web Services – Part 1

Most of the time folks find it really difficult to test web services. It is because we don't have proper knowledge of web services. Before any testing it is important to understand the system, we should know what can be the positive and negative sides of the technology and implementations of that application. Lets dive…

Shekhar Suman51 mins

Linux

11 years ago

Shadows are there to protect your Passwords (How Shadow-Utils is storing your password in Linux)

Our world would have been exponentially more peaceful if there was no fear of theft. We would’ve left our doors open but still enjoyed our privacy and security. Unfortunately looking at the current scenario, that’s a rather impossible fiasco. And hence the need for doors and locks. A similar case is applicable for the digital…

Shekhar Suman01 mins

Web Security

11 years ago

No CAPTCHA reCAPTCHA

How many times you feel affronted while reading those stupid numbers or words and re-entering it just to prove that you are a human. We call them CAPTCHA(Completely Automated Public Turing test to tell Computers and Humans Apart) and recommend it to avoid several kind of flooding attacks, brute force attacks and sometimes even for…

Shekhar Suman11 mins

Web Security

11 years ago

SQL Injection- Not a Cup of Cake

What is SQL Injection: I have gone through many SQL Injection tutorials before writing this post. One thing was common at every place, the queries coming from the readers. Many people don’t know what actually SQL Injection is. They think that they can easily enter into the database and make some changes, or they can…

Shekhar Suman21 mins

IOSEC.IN

Failure of Secure SDLC: Why Vulnerabilities Still Ship

Passing GIAC Security Leadership (GSLC) Exam

CSSLP: A Journey of Relearning How Security Should Be Built

Dissecting Akira Ransomware: Techniques, Payloads, and Lessons Learned

Ransomware 101: Understanding the Threat

Insecure Deserialization in .NET: Risk and Fixing Legacy Code

Is your CAPTCHA Strong enough !!

iOS Mobile Application Security Assessment for Beginners

Understanding and Testing Web Services – Part 1

Shadows are there to protect your Passwords (How Shadow-Utils is storing your password in Linux)

No CAPTCHA reCAPTCHA

SQL Injection- Not a Cup of Cake