WhiteHat's Top Ten Web Hacking Techniques of 2012

A list that everyone should read is a the Top Ten Web Hacking Techniques that WhiteHat puts out yearly. It is an amazing collection of the security industries findings on the hacking capabilities which are out on the web. Having been created for the last seven years the list points out attacks on various websites, browsers, proxies, and mobile platforms. The list is a collection with the goal of choosing the top ten new and most creative web-based attacks. The list also serves another purpose, awareness.

By collecting all of these attacks in one list it allows us to be aware of what is going on in the industry. As they say knowledge is power and by exposing these techniques you may be able to look at your organization and make changes to prevent attacks you didn’t even know were possible. Below are just some of the attacks which stood out. THe list is still being compiled so that WhiteHat can choose the Top Ten, but what an intense list it is so far:

  • Parasitic Computing Using Cloud Browsers
  • Hyperlink Spoofing and the Modern Web
  • Content Smuggling
  • Blended Threats and JavaScript
  • .NET Cross Site Scripting – Request Validation Bypassing
  • How Facebook Lacked X-Frame Options and What I Did With It
  • Bruteforce of PHPSESSID
  • And Many More…


The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, transparent user authentication,  self-service password management, two-factor authentication, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.


Subscribe to our newsletter: http://portalguard.com/contact_us.php