Full Disclosure: Paper - Dissecting Java Server Faces for Penetration Testing

Paper - Dissecting Java Server Faces for Penetration Testing

From: SecNiche Security Labs <0kn0ck () secniche org>
Date: Thu, 25 Aug 2011 22:18:05 -0400

Hi

This paper sheds light on the findings of security testing of Java
Server Faces. JSF has been widely used as an open source web framework
for developing efficient applications using J2EE. JSF is compared with
ASP.NET framework to unearth potential security flaws.

Link : http://www.secniche.org/jsf/dissecting_jsf_pt_aks_kr.pdf

Aditya K Sood
SecNiche Security Labs
http://www.secniche.org

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Paper - Dissecting Java Server Faces for Penetration Testing SecNiche Security Labs (Aug 26)
- <Possible follow-ups>
- Paper - Dissecting Java Server Faces for Penetration Testing SecNiche Security Labs (Aug 26)
  - Re: Paper - Dissecting Java Server Faces for Penetration Testing Saleh (Aug 26)
    - Re: Paper - Dissecting Java Server Faces for Penetration Testing James Rankin (Aug 26)
    - Re: Paper - Dissecting Java Server Faces for Penetration Testing Saleh (Aug 26)