11
Jun
D-Mart Phishing Attack
With each passing day, businesses are seeing more and more malicious emails in their inboxes which are turning out to be dangerous for their website and the users visiting it. Phishing attacks are evolving due to new ways which are being used to lure a victim and take advantage of his/her data. Phishing is an... Read More
06
Jun
Importance of Website Security Audit Tools
For hacking any organization’s network, hackers first try to get access through web applications. This gives them access to servers and subsequently to the entire network. Thus, it’s very important for any organization to secure its web applications using Website Security Audit Tools (WebSec Audit). These tools are generally simulations of hackers’ activity for searching vulnerabilities... Read More
04
Jun
ESDS Launches VTMScan 2.0 for Indian Banks and Other Websites
New Web Security Scanner Designed to Prevent Smartphone Phishing Attacks; Launched in Partnership with Hitachi Systems Micro Clinic. New Delhi, 28th May, 2018: ESDS Software Solution Pvt Ltd today announced the launch of VTMScan 2.0, the latest version of its popular ‘Malware Threats & Vulnerability Scanner’ already in use by India’s leading public sector banks and other... Read More
31
May
Open Web Application Security Project Audit
Introduction Open Web Application Security Project (OWASP) produces methodologies, documentation, tools, and technologies in the area of web application security. It produces Top 10 vulnerabilities after every 3 years. We cover OWASP TOP 10 2017 latest one and report the vulnerabilities related to it. ESDS VTMScan Detection Techniques SQL Injection: In SQL Injection we append various payloads such... Read More
31
May
SSL Scan – ESDS VTMScan
Introduction SSL Certificates provide secure, encrypted communications between a website and an internet browser. Web servers have a need to secure some data to and from clients, usually, the type of data are passwords, forms for submitting personal information such as bank details and so on. Websites can make use of data encryption using SSL... Read More
31
May
Phishing – ESDS VTMScan
Introduction Phishing is a method used by attackers to trick you into disclosing personal information such as username, password, credit card and banking information. The goal for the attacker is to steal your information and/or your money. The information gathered can be used to open fraudulent accounts in your name or make purchases using your... Read More
31
May
Link Crawling
Introduction Link crawling is the process of capturing all the pages (URLs/links) present on a website. It helps us know how many and which pages are there in our website. Site owners can also crosscheck whether these page are legitimate or not. ESDS VTMScan Technique We crawl all the pages which are present on a... Read More
31
May
Banner Grabbing
Introduction Banner Grabbing is collection of the information related to your website such as webserver information, header information and open ports. Banner grabbing is a technique used to gain information about a computer system on a network and the services running on its open ports. An intruder can use banner grabbing in order to find... Read More
31
May
Content Change Monitoring Scan.
Introduction Content Change Monitoring (CCM) is a webpage service which monitors the changes made in web pages of the website. ESDS VTMScan instantly sends alerts if there is any change takes place in the content of the concerned web page. It helps in dealing with hacking and zero-day attacks quickly and efficiently. It is important... Read More
31
May
GHDB – Google Hacking Database
Introduction The Google Hacking Database (GHDB) is a categorized index of Internet search engine queries designed to uncover interesting, and usually sensitive, information made publicly available on the Internet. In most cases, this information was never meant to be made public but due to any number of factors this information was linked in a web... Read More
