Difference between revisions of "OWASP/Training/LAPSE+"
From OWASP
| Line 6: | Line 6: | ||
| Content = | | Content = | ||
| − | <b>LAPSE+</b> is a security scanner for detecting vulnerabilities of untrusted data injection in Java EE Applications. It has been developed as a plugin for Eclipse Java Development Environment, working specifically with Eclipse Helios and Java 1.6 or higher. There are currently following | + | <b>LAPSE+</b> is a security scanner for detecting vulnerabilities of untrusted data injection in Java EE Applications. It has been developed as a plugin for Eclipse Java Development Environment, working specifically with Eclipse Helios and Java 1.6 or higher. There are currently following vulnerabilities detected: |
*URL Tampering | *URL Tampering | ||
*Cookie Poisoning | *Cookie Poisoning | ||
| Line 15: | Line 15: | ||
*Injections (SQL, Command, XPath, XML, LDAP) | *Injections (SQL, Command, XPath, XML, LDAP) | ||
*Path Traversal | *Path Traversal | ||
| − | |||
| Material = | | Material = | ||
| | ||
Revision as of 02:33, 4 August 2011
| MODULE | |
| OWASP LAPSE Project | |
| Overview & Goal | |
|
To be filled in | |
| Contents | Materials |
LAPSE+ is a security scanner for detecting vulnerabilities of untrusted data injection in Java EE Applications. It has been developed as a plugin for Eclipse Java Development Environment, working specifically with Eclipse Helios and Java 1.6 or higher. There are currently following vulnerabilities detected:
|
|
