Home

SecureSlash is providing you a large amount of ideas and suggestions about Security.It will be helpful for people who want to Learn Hacking and like to become a Security Expert.

Featured Post: Learn Hacking(A How to Start Guide)

Learn Hacking?

Many people learn to hack. So they are looking for hacking tutorial. They think they can learn how to hack by reading some hacking tutorials and e-books. But actually it is not a fact. Hacking is not about reading hacking books or hacking tutorial. The real-time experience is the must. we explain all about hacking in white hat way.

Collecting and Sharing knowledge/information about Security is the purpose of SecureSlash..

Security is having many masks like…

information security
internet security
data security
firewall security
server security
vpn security
web security
network security

We can secure our self from security risk by installing some security software or security tool. By this way we can improve our security policy

We give excellent Tutorials for Web Development languages. Risks and considerations while Scripting.

Wide ranges of Web Applications are being developed now. This range is amazingly larger than past two years. New businesses are started everyday in internet. So the need of web programmers is increasing everyday. PHP, ASP.NET, AJAX are in peak. Programmers are developing their Web Applications in some popular Scripting language. Every one does the scripts, but not secured.

Programmer can make their Code secured themself. But what about third-party scripts and packages? Most of the packages are being installed without evaluating its core. Because no one has time to evaluate thousands of lines in each files. We trust the package publisher. But we must take care on some core modules; like… mailer, backup system, etc. Updating the package is must, because known exploits may leads a big trouble for you and your server. So keep update them.

Some people provides components, modules and plug-in for packages. I strongly recommend you that don’t use them as it is. Testing and source code analysis is very important for them. Let’s say one example;

“ABC_Adsense_mod” lets say this is the Module name which was provided for handling adsense code in your pre-installed package. You can set values of “Client ID”, “Ad layout”, “Ad Channel” , “Ad Text Color” , ”Ad Link Color”, etc. it will generate the adsense code and it will place it in the pages, where the module is having permissions. Look “Client ID” and “Ad Channel” is the important things in “Google Adsense Code”. They may change these value in to some other value even you entered your account values. So your adsense income from your site will go to somewhere.

Don’t use encrypted scripts for your web applications. It is not recommended by Most of the Experts. See we have to face a large amount of security risks in Codes, even they are Open Source. How can we trust encrypted?

By,
Secure/ Team