Network Security: Detailed info on Re: J2EE Application Security Code Review

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Web-App-Sec

[Top] [All Lists]

Re: J2EE Application Security Code Review

from [crazy frog crazy frog] Network Security

[Permanent Link]

Subject:	Re: J2EE Application Security Code Review
Date:	Fri, 28 Oct 2005 16:39:25 +0530

hi,
there are various resources availiable on internet.check for proper
authentication,data validation,user rights,database security etc.
bam bam,

--
ting ding ting ding ting ding
ting ding ting ding ding
i m crazy frog :)
"oh yeah oh yeah...
 another wannabe, in hackerland!!!"



On 10/28/05, Yousef Syed <yousef.syed@gmail.com> wrote:

Hi,
I've been tasked with performing a Code Review on for Security on a
J2EE Application's code.
Though I've taken part in numerous Code Reviews, I've never done one
searching for Security issues.

Can someone please advise me on what I should be looking for?
Where can I get further information on the procedure that should be followed?
Are there any Standards/Best Practices for Securing J2EE applications?

Thanx,
ys

--
Yousef Syed

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
J2EE Application Security Code Review, Yousef Syed Re: J2EE Application Security Code Review, Eoin Keary Re: J2EE Application Security Code Review, Andrew van der Stock Re: J2EE Application Security Code Review, crazy frog crazy frog <= RE: J2EE Application Security Code Review, Prashant Shirangare Re: J2EE Application Security Code Review, Dean H. Saxe RE: J2EE Application Security Code Review, Evans, Arian RE: J2EE Application Security Code Review, Jeff Robertson Re: J2EE Application Security Code Review, Dean H. Saxe

Previous by Date:	Re: J2EE Application Security Code Review, Andrew van der Stock
Next by Date:	RE: Smells like a phish, is a fish?, Lyal Collins
Previous by Thread:	Re: J2EE Application Security Code Review, Andrew van der Stock
Next by Thread:	RE: J2EE Application Security Code Review, Prashant Shirangare
Indexes:	[Date] [Thread] [Top] [All Lists]