Security Code Review- Identifying Web Vulnerabilities

by Kiran Maraju
Oct. 2, 2017 1 comment Infosecwriters Apps & Hardening

This paper gives an introduction of security code review inspections, and provides details about web application security vulnerabilities identification in the source code. This paper gives the details of the inspections to perform on the Java/J2EE source code. This paper explains the process of identifying vulnerable code and remediation details. This paper illustrates the specific locations of code flows to be checked to identify web application vulnerabilities.

http://www.infosecwriters.com/Papers/KMaraju_Code_Review.pdf

Avatar
Irina Alexandra Negrii 7 months ago

The only way to address this problem is to play by hacker rules and beat them to the punch...in software development, this means attacking your own software-testing for failure.

Reply