Comments
yourfanat wrote: I am using another tool for Oracle developers - dbForge Studio for Oracle. This IDE has lots of usefull features, among them: oracle designer, code competion and formatter, query builder, debugger, profiler, erxport/import, reports and many others. The latest version supports Oracle 12C. More information here.
Cloud Expo on Google News
SYS-CON.TV
Cloud Expo & Virtualization 2009 East
PLATINUM SPONSORS:
IBM
Smarter Business Solutions Through Dynamic Infrastructure
IBM
Smarter Insights: How the CIO Becomes a Hero Again
Microsoft
Windows Azure
GOLD SPONSORS:
Appsense
Why VDI?
CA
Maximizing the Business Value of Virtualization in Enterprise and Cloud Computing Environments
ExactTarget
Messaging in the Cloud - Email, SMS and Voice
Freedom OSS
Stairway to the Cloud
Sun
Sun's Incubation Platform: Helping Startups Serve the Enterprise
POWER PANELS:
Cloud Computing & Enterprise IT: Cost & Operational Benefits
How and Why is a Flexible IT Infrastructure the Key To the Future?
Click For 2008 West
Event Webcasts
Web 2.0 Security Session at AJAXWorld 2007 East in New York City
Dan Cornell has been developing and securing web-based software systems for over ten years

The author of Sprajax, an open source tool for assessing the security of AJAX-enabled web applications, will be giving a session in the "Web 2.0" track at AJAXWorld Conference & Expo 2007 East being held 19-21 March, 2007, in New York's Roosevelt Hotel.

Dan Cornell, who regularly speaks for local and regional chapters of several organizations including Java Users Groups, the IEEE Computer Society, Dot Net Users Groups and the Information Systems Audit and Control Association (ISACA), will be giving a session on "Web 2.0 Security" in which he'll explain how, while Web 2.0 technologies and development techniques have opened exciting possibilities for creating new classes of web-based applications, this enhanced web functionality unfortunately introduces a new set of security risks.

"Because the techniques are so new, the risks and countermeasures are not well understood," says Cornell.

His session will explain Web 2.0 technologies and risks to these applications, examine how common web application vulnerabilities translate to Web 2.0 environments, and provide examples of attacks as well as techniques that can be used to mitigate risks.

Cornell's Sprajax -- which he donated to to OWASP -- is an open source black box security scanner used to assess the security of AJAX-enabled applications.

"By detecting the specific AJAX frameworks in use," says Cornell, "Sprajax is able to better formulate test requests and identify potential vulnerabilities."

AJAXWorld 2007 East Conference & Expo Receives
The Largest Number of Sponsor Support for Any Web 2.0 Event in 2007!

SYS-CON Events announced the "charter sponsors" of AJAXWorld Conference & Expo 2007 East which includes; Laszlo Systems (Diamond Sponsor), JackBe (Platinum Sponsor), Adobe (Platinum Sponsor), Cynergy (Platinum Sponsor), Backbase (Gold Sponsor) Google (Gold Sponsor), Nexaweb (Gold Sponsor), ICEsoft (Gold Sponsor), Oracle (Gold Sponsor), Helmi Technologies (Gold Sponsor), JetBrains (Gold Sponsor), TIBCO (Gold Sponsor), Sun Microsystems (Silver Sponsor), Parasoft (Silver Sponsor), Servoy (Silver Sponsor), Etelos (Silver Sponsor),  Microsoft (Expo Plus Sponsor),  Lightstreamer (Exhibitor Plus Sponsor),  IT Mill (Exhibitor Plus Sponsor), FrogLogic (Exhibitor Plus Sponsor), ThinWire (Expo Sponsor), Quasar Tecnologies (Expo Sponsor), Zapatec (Exhibitor Plus Sponsor), MB Technologies Bindows (Exhibitor), OpenSpot (Exhibitor), ILOG (Exhibitor), Passport Corporation (Exhibitor), Manning Publications (AJAX Book Sponsor), Apress (AJAX Book Sponsor), Conference Guru (Media Sponsor), Flash Goddess (Media Sponsor), AJAXWorld Magazine (Media Sponsor), Web 2.0 Journal (Media Sponsor), SYS-CON.TV (Media Sponsor), IT Mill (Media Sponsor), Methods & Tools (Media Sponsor), Web 2.0 Journal (Media Sponsor), and OASIS (Association Sponsor).

About RIA News Desk
Ever since Google popularized a smarter, more responsive and interactive Web experience by using AJAX (Asynchronous JavaScript + XML) for its Google Maps & Gmail applications, SYS-CON's RIA News Desk has been covering every aspect of Rich Internet Applications and those creating and deploying them. If you have breaking RIA news, please send it to RIA@sys-con.com to share your product and company news coverage with AJAXWorld readers.

In order to post a comment you need to be registered and logged in.

Register | Sign-in

Reader Feedback: Page 1 of 1

Hello, very nice site! Please also visit my homepages:
corolla toyota730 toyota corollailf
Thanks!

The author of Sprajax, an open source tool for assessing the security of AJAX-enabled web applications, will be giving a session in the 'Web 2.0' track at AJAXWorld Conference & Expo being held 19-21 March, 2007, in New York's Roosevelt Hotel.

So is Sprajax the first web security scanner developed specifically to scan AJAX?

So is Sprajax the first web security scanner developed specifically to scan AJAX?


Your Feedback
Red wrote: Hello, very nice site! Please also visit my homepages: corolla toyota730 toyota corollailf Thanks!
AJAX News Desk wrote: The author of Sprajax, an open source tool for assessing the security of AJAX-enabled web applications, will be giving a session in the 'Web 2.0' track at AJAXWorld Conference & Expo being held 19-21 March, 2007, in New York's Roosevelt Hotel.
Security2.0 wrote: So is Sprajax the first web security scanner developed specifically to scan AJAX?
Security2.0 wrote: So is Sprajax the first web security scanner developed specifically to scan AJAX?
Latest Cloud Developer Stories
Yahoo CIO Mike Kail will present a session on DevOps at the 3rd International DevOps Summit, November 4-6, 2014, at the Santa Clara Convention Center in Santa Clara, CA. Mike brings more than 23 years of IT operations experience with a focus on highly scalable architectures to Y...
The industry is heated with debates on whether adopting private or public cloud is the smartest, best, cheapest, you name it choice. But this debate is missing the mark. Businesses shouldn't be discussing public vs. private, but rather how can they make the two work together to t...
Be Among the First 100 to Attend & Receive a Smart Beacon. The Physical Web is an open web project within the Chrome team at Google. Scott Jenson leads a team that is working to leverage the scalability and openness of the web to talk to smart devices. The Physical Web uses bluet...
14th International Cloud Expo, held on June 10–12, 2014 at the Javits Center in New York City, featured three content-packed days with a rich array of sessions about the business and technical value of cloud computing, Internet of Things, Big Data, and DevOps led by exceptional s...
People often ask how Qubell is different from Chef, Puppet, OpenShift, Docker, Heat, Ansible, Mesos, Kubernetes or some other hip product du jour. Like any comparison of apples to oranges, the answer involves a surprisingly deep investigation into botanical conventions, differenc...
Subscribe to the World's Most Powerful Newsletters
Subscribe to Our Rss Feeds & Get Your SYS-CON News Live!
Click to Add our RSS Feeds to the Service of Your Choice:
Google Reader or Homepage Add to My Yahoo! Subscribe with Bloglines Subscribe in NewsGator Online
myFeedster Add to My AOL Subscribe in Rojo Add 'Hugg' to Newsburst from CNET News.com Kinja Digest View Additional SYS-CON Feeds
Publish Your Article! Please send it to editorial(at)sys-con.com!

Advertise on this site! Contact advertising(at)sys-con.com! 201 802-3021



SYS-CON Featured Whitepapers
ADS BY GOOGLE

Breaking Cloud Computing News

DALLAS, Aug. 30, 2014 /PRNewswire-iReach/ -- The mobile cloud market is fast gaining momentum pri...