Published on 2006-10-14 14:16:33

Security Focus have a new article describing some techniques to assess web 2.0 applications with Firefox : Discovering hidden calls, Crawling challenges and browser simulation, and Logic discovery & dissecting applications. There is no doubt that there is a great set of tools around Firefox which make development and debug easy, and as said the author "one of the efficient methodologies of assessing applications is by effectively using a browser". Or in other words using Firefox.

In this article we have seen three techniques to assess web 2.0 applications. By using these methodologies it is possible to identify and isolate several Ajax-related vulnerabilities. Browser automation scripting can assist us in web asset profiling and discovery, that in turn can help in identifying vulnerable server-side resources.

Next generation applications use JavaScript extensively. Smooth debugging tools are our knights in shining armor. The overall techniques covered in this article is a good starting point for web 2.0 assessments using Firefox.

• TIBCO Connects the AJAX Dots
• Taconite, the AJAX Framework
• aspWebCalendar2008, New Web Based Ajax Calendar
• Frevvo Empowers Businesses To Create Rich, Dynamic Internet Applications With New Live Forms Software

• Massage San Diego Search Results
• [Contact us]

Member of the PHP Magazine Network, Copyright (C) 2005-2008 phpmagazine.net All Rights Reserved