Putting the Cart After the Horse: Project Planning and Scope Definition In today's fast-paced business world, proper project planning can often take a backseat to other objectives. Employees are aske...

As with many other business analysis issues, there are three sides to the story when looking at Web application security testing: yours, the findings of your vulnerability assessment, and the truth. ...

Over the past several years I have heard people asking the question “should I use vulnerability analysis tools to assess my web based applications or should I look to penetration testing?”...

Ajax programming is one of the most exciting new technologies in recent history. Ajax (Asynchronous JavaScript and XML) allows a web page to refresh a small portion of its data from a web server, rat...

Many companies are under the impression that testing for Web application security simply involves a cursory check for easy-to-guess usernames and passwords. Yet application security testing can and s...