JavaSnoop: How to Hack Anything in Java
Source: Aspect Security
Many applications in the enterprise world feature thick Java clients. Testing the security of such applications is considered practically more difficult than a similar browser-based client because inspecting, intercepting and altering application data is easy in the browser. With DOM inspection tools like Firebug and WebKit Web Inspector, and HTTP proxy tools such as WebScarab, Fiddler and Burp, assessing the trust boundary between the client and server has become mostly commoditized in web applications. Security practitioners have been struggling to reach the same level of effectiveness when testing thick Java clients. Researchers have previously tried to statically alter the application code through decompilation and recompilation to add BeanShell script "Hooks".
| Format: | Size: | 305.96 | |
| Date: | Jul 2010 |
People who downloaded this item also downloaded
- Troubleshooting Single Sign-On (SSO) Between IBM WebSphere Portal and IBM Lotus Domino
- Memory Leak Detection and Analysis in WebSphere Application Server: Part 1: Overview of Memory Leaks
- Parallel Java: A Unified API for Shared Memory and Cluster Parallel Programming in 100% Java
- Single Sign on (SSO) Solution Implementation
- Enabling WebSphere Application Server With Single Sign-On
