Academic Papers on Web Application Security
I found a useful resource containing a whole list of academic papers on web-application security.
This list represents an attempt to collect academic papers on the subject of Web application security sorted by the year of publication.
Hacking web applications has become a big thing in the last 5 years, just look at the number of holes found in common PHP applications.
It has papers from 2004-2006.
Subjects cover a good range including:
- SQLrand: Preventing SQL Injection Attacks
- Bypass Testing of Web Applications
- Defining a Set of Common Benchmarks for Web Application Security
- The Essence of Command Injection Attacks in Web Applications
- A Practical Approach for Defeating a Wide Range of Attacks
You can find the resource here:
Academic Papers in Web Application Security
Vulnerabilities in custom web applications are the most common flaws I find during penetration testing nowadays. It is a very important area and these papers should help your knowledge on both sides of the fence.
Tweet
Posted in: 
Recent in Web Hacking:
- theHarvester – Gather E-mail Accounts, Subdomains, Hosts, Employee Names – Information Gathering Tool
- Arachni v0.4 Released – High-Performance (Open Source) Web Application Security Scanner Framework
- Ramnit Worm Stealing Facebook Account Passwords, E-mail Address & Bank Details
Related Posts:
- BobCat SQL Injection Tool based on Data Thief
- UK Wants Backdoor in Next Version of Microsoft Windows
- IBM Accused of Hacking
Most Read in Web Hacking:
- wwwhack 1.9 – Download wwwhack19.zip Web Hacking Tool - 505,323 views
- Web Based E-mail (Hotmail Yahoo Gmail) Hack/Hacking with JavaScript - 298,152 views
- Download youtube.com videos? - 153,869 views
Thanks Darknet for providing these resources. and I appreciate the efforts you guys are putting in making the world aware of these vulnerabilities