Make My Day &Ndash; Just Run A Web Scanner: Countering The Faults Of Typical Web Scanners Through Byte-Code Injection

No ratings

Presented at Blackhat Europe 2007 by

Dr. Chess

Today, other than doing a full static analysis of the code, the most common practice to find vulnerabilities in your web application is to get off-the-shelf automated web scanner, point to a URL, and hope that it’s doing the right thing.