I’ve found a few days ago this plugin and i would like to share with everybody since it may help secure the web. This plugin scans the wordpress installation folder for paterns usualy found in exploits/throjans/malware web scripts. The plugin produces quite a few false positive alerts but also it’s very easy to spot suspicious code in suspicious files.
Wt (pronounced \’witty\’) is a C++ library and application server for developing and deploying web applications. It is not a \’framework\’, which enforces a way of programming, but a library. read full article
First i must say that this will not be a way to prove that your application is secure, it will only be a quick & dirty way of finding common bugs in web applications. The following will be a few techniques that i tend to use the first time i see an web application ( and generally a database application ). I will use PHP for the few code examples but the vulnerabilities presented are not limited to PHP, in fact are independent of the server-side programming language used.… read full article