[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Full-disclosure] Paper - Dissecting Java Server Faces for Penetration Testing
- To: full-disclosure@xxxxxxxxxxxxxxxxx, websecurity@xxxxxxxxxxxxx
- Subject: [Full-disclosure] Paper - Dissecting Java Server Faces for Penetration Testing
- From: SecNiche Security Labs <0kn0ck@xxxxxxxxxxxx>
- Date: Thu, 25 Aug 2011 22:18:05 -0400
Hi
This paper sheds light on the findings of security testing of Java
Server Faces. JSF has been widely used as an open source web framework
for developing efficient applications using J2EE. JSF is compared with
ASP.NET framework to unearth potential security flaws.
Link : http://www.secniche.org/jsf/dissecting_jsf_pt_aks_kr.pdf
Aditya K Sood
SecNiche Security Labs
http://www.secniche.org
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/