Professional Documents
Culture Documents
Top OWSAP F5 Imperva Migration
Top OWSAP F5 Imperva Migration
Injection
A2-Cross Site Scripting (XSS) A3-Broken Authentication and Session Management A4-Insecure Direct Object References A5-Cross Site Request Forgery (CSRF)
Cookie Poisoning/ Injection. Session Hijacking Parameter Tampering. Dynamic Profiling Cross Site Request Forgery (CSRF)
Session hijacking
A6-Security Misconfiguration
Web server software and operating system attacks. Dynamic Profiling virtual patch
Cha r
A7-Insecure Cryptographic Sensitive Data Leakage (Social Security Storage Numbers, Cardholder Data, PII, HPI) A8-Failure to Restrict URL Access Forceful Browsing. Error code handling. Imperva WAF kim sot URL nhiu cp . Khi vi phm xy ra Impeva tr ra trang bo li cho ngi dng cui v to arlert cho admin. Imperva WAF c kh nng ngt kt ni SSL. Kh nng gn thm kt ni SSL cho HTTP thng thng (URL rewriting). Imperva WAF tun theo chun FLIPS Tnh nng URL rewriting. Tnh nng ThreatRadar.
Cha r
Forceful Browsing
Cha r
Cha r
Do Quoc Cuong
1/1
23/12/2010