Web application security: How to minimise the risk of attacks

Overview

Vulnerabilities in web applications are now the largest vector of enterprise security attacks. Stories about exploits that compromise sensitive data frequently mention culprits such as "cross-site scripting," "SQL injection," and "buffer overflow." Vulnerabilities like these fall often outside the traditional expertise of network security managers.

To help you understand how to minimise these risks, Qualys provides this guide as a primer to web application security. The guide covers:
•typical web application vulnerabilities
•comparison of options for web application vulnerability detection
•QualysGuard Web Application Scanning solution