waf

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

90ò0of all statistics can be made to say anything... 50ò0of the time, aka my thoughts on the Verizon report

90ò0of all statistics can be made to say anything... 50ò0of the time, aka my thoughts on the Verizon reportHow many breaches from External...sources were facilitated by poor practices of inside sources? Weak passwords, poor surfing habits, poor security implementations, etc. External breaches only occur when an insider allows it to...

Tags: Firewalls, SECURITY, NETWORKING, Network security, Verizon Communications Inc., WAF

Discussion threads 2008-06-23

Another bug your tools won't find and your WAF won't prevent

Another bug your tools won't find and your WAF won't preventNothing is secureIt's always the simple things that work best.And do not even think this is limited MS, every system will fall prey to this or something like it.The only totally secure system, is one not connected to the network.But...

Tags: PRODUCTIVITY, tool, WAF

Discussion threads 2008-06-09

PCI Compliance gets clarified and neutered (further)

PCI Compliance gets clarified and neutered furtherStraw man argumentI think you are missing something, namely the first part of the section that you just quoted: [i]Having all custom application code reviewed for common vulnerabilities by an organization that specializes in application security[/i]I'll be the first to acknowledge that I know...

Tags: PCI Standard, PCI, WAF, PCI compliance

Discussion threads 2008-04-17

PCI Compliance gets clarified and neutered (further)

At one point, I thought that PCI certification was a great thing.  Now I realize that it's not really about security at all... it's about money and responsibility and transferring ownership of risk. The PCI certification just got a clarification: "6.6 Ensure that all web-facing applications...

Tags: Web, XSS, PCI, Web Application, TV, Attack, PCI Compliance, Web Application Firewalls, WAF, Security, Nathan McFeters

Blog posts 2008-04-17

Photos: Top 10 products with high 'wife-acceptance factor'

"Wife-Acceptance Factor," or WAF, describes how female-friendly a given product is. But why fight it? Instead, use the WAF to your advantage: We examine a list of products she'll be begging you to buy.

Tags: WAF

Image galleries 2006-10-28

Additional Resources

Samsung SP-A900B

Samsung, with the help of video guru Joe Kane, again delivers outstanding performance in the high-end front projection DLP category with the flagship SP-A900B. This 1080p resolution, one-chip DLP projector sports the latest Dark Chip 4 chip from Texas Instruments, but otherwise appears virtually the same as the SP-A800B that...

Tags: Projectors, Network technology, picture menu, menu system, Samsung SP-A900B, Samsung Electronics Co. Ltd., projector

Product reviews 2009-09-14

ThreatSentry 3.0.94.0 (Windows)

ThreatSentry is a multi-layered Web Application Firewall that protects Microsoft Windows Web servers from a broad range of web application threats including Cross Site Request Forgery (CSRF/XSRF), Structured Query Language SQL Injection, Cross-Site Scripting XSS and other attacks. ThreatSentry combines an advanced web application firewall, a proprietary NDIS driver, and...

Tags: Web Application, Microsoft Windows, Privacyware, ThreatSentry, Cloud Computing, Firewalls, Intrusion Prevention, Networking, Security

Software downloads 2009-07-28

Ashland University Selects WebDefend as Critical Component in Overall Threat Mitigation and Event Correlation Model

Ashland University is a mid-sized regional teaching university, historically related to the Brethren Church. The university sought a Web Application Firewall WAF as part of its overall threat mitigation and event correlation model. After evaluating several appliances, Ashland decided on Breach Security's WebDefend for its feature set, including host-based agents,...

Tags: University, Breach Security, Ashland University, Real Estate, Cloud Computing, Business Operations

Case studies 2009-03-30

Overstock.com Keeps Customer Security and Compliance Top Priority Using Breach Security WebDefend

In 1999, Overstock.com brought the outlet mall to the consumer via the Internet, providing brand-name products found in traditional retail stores at deep discounts. The Salt Lake City-based company is now a leading online retailer offering its customers an opportunity to shop for bargains conveniently, while offering its suppliers an...

Tags: Security, Compliance, Overstock.com Inc., Breach Security, Retail

Case studies 2009-01-13

Honeywell Protects Against Web Threats, Achieves Significant Cost Savings Using Breach Security WebDefend

Global companies like Honeywell are often targeted at the web application layer. As new online threats emerged, Honeywell sought solutions to protect its extensive web layer. Specifically, Honeywell wanted protection against threats listed on the Open Web Application Security Project's OWASP Top Ten list, which includes cross-site scripting and SQL...

Tags: Web, Honeywell International Inc., Cost Savings, Breach Security, Web Site Development, Channel Management, Cloud Computing, Web Technology, Internet, Marketing

Case studies 2009-01-13

Stephen S. Wise Temple Chooses WebDefend for Its Non-Intrusive and Effective Web Application Security

Stephen S. Wise Temple was started in 1964 by Rabbi Isaiah Zeldin and 35 families. In the years since, it has grown into a progressive Synagogue that blends Jewish values, ethics, and traditions into a house of worship and community. Identified as a top priority within its technology strategy, Stepien...

Tags: Web, Web Application, Breach Security, Cloud Computing

Case studies 2008-07-11

What's wrong with an exploit being sexy?

First off, let me start by saying _dietrich has been following our blog for quite some time and is a consistent poster, providing good advice on how to use Linux securely, sometimes as an alternative to Windows technologies.  I wouldn't have commented about this in a blog posting, except that...

Tags: Exploit, ActiveX, Flaw, Dietrich, openSUSE, Microsoft Windows, ActiveX/COM/COM+/DCOM, Operating Systems, Middleware, Software, Software Development, Software/Web Development, Enterprise Software, Nathan McFeters

Blog posts 2008-06-10

News to know: iPhone 3G; MobileMe; Office 14; Home Server fix

First, the non-Apple news. (Scroll down for major dose of WWDC 2008 links.) Mary Jo Foley: New proof: Office 14 slated for 2009 Are all Microsoft and Apple sync services created equal? SharePoint gets an open-source podcasting add-on Final...

Tags: Apple iPhone, Microsoft Office, Server, Apple Inc., 3G, Cellular Phones, Wireless, Consumer Electronics, Personal Technology, David Grober

Blog posts 2008-06-10

Another bug your tools won't find and your WAF won't prevent

First off, I want to apologize to our readers for not being here as much last week.  I had a rough week involving a random ear infection and the loss of an aunt to cancer, so it was not a week where I was very concerned about computer security or...

Tags: Juniper Networks Inc., Blog, Bug, ActiveX, Tool, Productivity, ActiveX/COM/COM+/DCOM, Software Development, Software/Web Development, Nathan McFeters

Blog posts 2008-06-09

Vulnerability Assessment Plus Web Application Firewall (VA+WAF)

New technology developed by WhiteHat Security and F5 Networks enables organizations to immediately mitigate discovered vulnerabilities using a web application firewall. WhiteHat's Sentinel service provides continuous assessments of web applications for vulnerabilities. Once detected and validated by WhiteHat, detailed information about these vulnerabilities are passed to the F5 BIG-IP Application...

Tags: F5 Networks Inc., Vulnerability, Web Application, Vulnerability Assessment, Application Firewall, WhiteHat, Attack Technique, Firewalls, Cloud Computing, Security, Networking

White papers 2008-06-01

More bad news for McAfee, HackerSafe certification

Dan Godin posted a great article that was picked up by The Register a couple days ago about continued challenges for McAfee's newly purchased HackerSafe division.  I find the article interesting as HackerSafe uses a scanning tool that probes for web application security flaws... of course, tools are limited in...

Tags: McAfee Inc., Security, Certification, Vulnerability, XSS, HackerSafe, Godin, Goodin, Nathan McFeters

Blog posts 2008-05-01

Developers at fault? SQL Injection attacks lead to wide-spread compromise of IIS servers

There's been a lot of noise and violent thrashing over the last couple days regarding a flaw that was originally believed to be a flaw in Microsoft's IIS Internet Information Server, but has since been pointed out as simply a well thought out SQL Injection attack.  For those of...

Tags: Developer, Password, Web Application, Server, SQL, Site, SQL Injection, Microsoft IIS Server, Attack, Programming Languages, Security, Databases, Software Development, Software/Web Development, Enterprise Software, Software, Data Management, Nathan McFeters

Blog posts 2008-04-28

Best of Show Systems-Munich

It took two days but my tour of the six halls of this 5 day expo is complete. Here are a few companies that I found worth a second look:BalaBit. This Hungarian startup was launched from the development of open source syslog tools: syslog-ng. Their product, Zorp,...

Tags: security, Crossbeam

Blog posts 2005-10-25

IE Cache Cleaner X 1.1.0 (Mac)

IE Cache Cleaner X deletes the following files: ~/Library/Caches/MS Internet Cache/cache.waf ~/Library/Caches/MS Internet Cache/IE Cache.waf ~/Library/Caches/MS Internet Cache/IE Control Cache.waf ~/Library/Preferences/Explorer/Download Cache ~/Library/Preferences/Explorer/History.html ~/Library/Preferences/Explorer/Downloads.html Features are among others, the possibility to run the app, without any input of the user, so the app is suitable to run as...

Tags: Apple Macintosh, Microsoft Internet Explorer, App, MawTec, IE Cache Cleaner X, Web Browsers, Internet

Software downloads 2003-09-05

WAFInspec 1.0a (Mac)

WAFInspec enables you to explore and extract data from WAF formated files, like cache files of Microsoft Internet Explorer and webarchive files. WAFInspec is Freeware.

Tags: Freeware, Apple Macintosh, Executive Computing, WAFInspec, Web Browsers, Desktops, Internet, Hardware

Software downloads 2003-04-18