The central ingredient of Web 2.0 web applications is Ajax. There is not security weakness in Ajax itself, but adaptation of this technology has changed the Web application development approach.
aSSL, or Ajax Secure Service Layer, is an open source library designed to substitute the need for Secure Socket Layer (SSL) in Ajax web-applications. In a [...]

If you are a Windows user, you often use the Office Suite to write documents, prepare presentations or do some financial calculations. Sensitive documents can be given a degree of protection using Office built-in encryption. Microsoft offers several features to help restrict access to documents through the use of passwords or encryption.
If encryption is [...]

When using a public network, such as an open wireless hot-spot, the potential security risk is that your conversations can be sniffed by other malicious users. Encrypting your communication is most likely the best solution; however most Internet users will find it too tedious to setup.
In this hack, we will show you how to tunnel [...]

Managing multiple passwords is complex. Internet users often have too many passwords to remember. Each password may expire on a different schedule and be subject to different policies about password composition. This complexity lads people to give up and select trivial passwords, or even worse, use one password for everything.
Sxipper is a free Firefox browser [...]

Greasemonkey is a Firefox extension that basically allows you to write JavaScript scripts that make on-the-fly changes to web pages you visit. As the scripts are persistent, the changes made to the web pages are executed every time the page is opened.
So what do these scripts do? Almost anything. Greasemonkey can be used for adding [...]

If you work on remotely connected machines, most likely you’re going to use SSH to secure your connections. But, what if you just want to work with files on a remote server, but find SSH file transfer tedious in repetition and establishing a VPN tunnel is too complicated?
What you’re looking for is a simple tool [...]

If you share a desktop computer, or use your laptop in airports, hotels and other public places, an unauthorized user might try to read valuable data stored on your computer. Also your portable computer can be stolen. These are just two scenarios where malevolent parties can gain access to sensitive information.
One solution to help reduce [...]

Most Windows users work with administrative privileges all the time. Everything they do, from browsing the Internet, and writing documents is performed with full and unnecessary administrative control. From a security perspective, running with administrative privileges is dangerous to your computer and data, but sometimes it’s part of the job.
Web browsing and reading emails are [...]

Clipperz, the recently launched online password manager, can be used to store any kind of sensitive information, such as passwords, confidential notes, credit and debit card details, and so on.
It is free and completely anonymous, and the real cool feature is the direct login: users can save the credentials of their online accounts into [...]

If you are responsible for the security of your web applications, you know that auditing them for vulnerabilities is a challenging task. You will want to get familiar with the W3AF Web application attack and auditing framework to test your web applications before an attacker with malicious intent does it for you.
W3AF is designed for [...]