HACKING EXPOSED WEB APPLICATIONS, 3rd Edition
| | ||
F5 TrafficShield, 39
false positives, 457
FFsniFF, 343
Fiddler, 1921
See also HTTP proxies
file disclosure, 312319
countermeasures to attacks, 320
file extensions, 4748
files
common, 49
common filenames guessing, 314315, 317318
helper, 4950
include, 76
fingerprinting, 3032
authz, 161168
query strings, 5657
Firefox
browser extensions, 1417
disabling XUL status elements, 359
Extensions, 343344
extensions for HTTP/S analysis, 472
Safe Mode, 359360
secure configuration, 358359
firewalls, 384385
detecting web app firewalls, 3839
F5 TrafficShield, 39
Netcontinuum, 39
Teros, 3839
flowcharts, 42, 43
footprinting, 2829
form fields, hidden, 172, 173
forms, 5456
bypassing SQL- backed login forms, 137138
forms-based attacks, 134139
FP. See FrontPage
fpse2000ex.exe, 300301
FPSEs, 298300
Fraggle, 372
fragmentation
extreme, 369
overlap, 369
freeware, most popular, 48
FrontPage, 298300
Server Extensions (FPSEs), 298300
VSRAD buffer overflow, 300301
FTP, 297
full-knowledge analysis, 398
code review, 407423
fuzzing, 424426
penetration testing, 426427
threat modeling, 398407
tools, 426
fuzzing, 424
building your own fuzzer, 425426
off-the-shelf fuzzers , 424425
| | ||