This white paper explains how these attacks work and will discuss the difference between Non-Persistent Cross-Site Scripting and the far more dangerous Persistent Cross-Site Scripting variations. We will highlight the challenge presented to Web Application Security Scanners and how only NTOSpider solves them.
This paper will argue that the iframe attack (popularized by the Bank of India hack) has fundamentally altered the way that security professionals must defend less important websites. By allowing phishers to leverage a company’s brand to steal from users, the iframe attack has made an entirely new class of formerly unimportant sites into material security concerns.
Analyzing and Detecting Malicious Content. This paper asks a question many web admins would rather not face. Is your website already infected with malicious content? How to find out and what to do about it.
Why Known Vulnerability Checks for Web Applications Simply Don’t Work. This paper explains the ineffectiveness of known vuln checkers such as Nikto, Wikto and other such solutions added to network scanning tools.
