This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP/Training/LAPSE+"
From OWASP
(Created page with "{{Template:<includeonly>{{{1}}}</includeonly><noinclude>OWASP Training Modules</noinclude> | Module_designation = OWASP LAPSE Project | Module_Overview_Go...") |
|||
| Line 7: | Line 7: | ||
| Content = | | Content = | ||
| | ||
| − | * | + | LAPSE+ is a security scanner for detecting vulnerabilities of untrusted data injection in Java EE Applications. It has been developed as a plugin for Eclipse Java Development Environment, working specifically with Eclipse Helios and Java 1.6 or higher. |
| − | * | + | *URL Tampering |
| + | *Cookie Poisoning | ||
| + | *Parameter Tampering | ||
| + | *Header Manipulation | ||
| + | *Cross-site Scripting (XSS) | ||
| + | *HTTP Response Splitting | ||
| + | *Injections (SQL, Command, XPath, XML, LDAP) | ||
| + | *Path Traversal | ||
| | ||
| Material = | | Material = | ||
Revision as of 02:31, 4 August 2011
| MODULE | |
| OWASP LAPSE Project | |
| Overview & Goal | |
|
To be filled in | |
| Contents | Materials |
|
LAPSE+ is a security scanner for detecting vulnerabilities of untrusted data injection in Java EE Applications. It has been developed as a plugin for Eclipse Java Development Environment, working specifically with Eclipse Helios and Java 1.6 or higher.
|
|
