Defending Against Injection Attacks Through Context-Sensitive String Evaluation

300 word summary: What is the paper about? Defending Against Injection Attacks Through Context-Sensitive String Evaluation introduces CSSE – Context-Sensitive String Evaluation – a way to detect sqlI in php at runtime – essentially an intrusion detection platform for php apps (though it required modifications to source-code) and its implementation. The Read more…

AMNESIA: Analysis and Monitoring for NEutralizing SQL-Injection Attacks

300 word summary: AMNESIA: analysis and monitoring for NEutralizing SQL-injection attacks. Provides a valuable background section on the countermeasures for SQL injection attacks: Defensive Programming General Techniques against SQLi Static Analysis techniques Provides examples of SQL injection attacks, with sql code. Provides a definition of an sql injection attack: “An Read more…

Building a PWA vuejs app with wordpress API – Part 3

In part 3 we will be looking at categories (or archives in wordpress terminology) At this point, its good to look into the wordpress API – fortunately there is excellent documentation available here: https://developer.wordpress.org/rest-api/ The specific endpoint we are interested in is the ‘post’ endpoint: https://developer.wordpress.org/rest-api/reference/categories/ The first edit we Read more…

Xdebug in sublime text

Remote Debugging PHP in SublimeText with XDebug prereqs: This post assumes you already have a working xdebug install SublimeText How to get Xdebug working with Sublime Text? Open SublimeText Open the package install dialog (cmd+shift+p then type “pack inst”) Search for ‘xdebug’ Select Xdebug Client and Press enter Setting Up Read more…

service-oriented architecture and frameworks – SOA frameworks

service-oriented architecture and frameworks IntroductionPapazoglou, (2003) organised SOA in four architectural layers: Service Foundations, Service Composition, Service Management and Service Engineering and outlined a host of technologies that could be utilised when developing and deploying an SOA system to overcome the challenges of a distributed enterprise system, including application integration, Read more…

Laravel quickstart gist using craftable and existing database schema

Laravel quickstart gist using craftable and existing database schema to generate models, etc from existing database schema. cd ~/git brew install nmp brew install nodejs curl -sS https://getcomposer.org/installer | php mv composer.phar /usr/local/bin/composer composer create-project –prefer-dist laravel/laravel exampletest “5.5.*” cd exampletest composer require –dev “xethron/migrations-generator” copy in .env file php Read more…

Laravel quickstart gist

Here is my quick start bootstrap for creating laravel sites from scratch cd ~/git brew install nmp brew install nodejs curl -sS https://getcomposer.org/installer | php composer global require laravel/installer laravel new php atisan migrate:install php artisan make:auth php artisan migrate #api composer require laravel/passport php artisan migrate php artisan passport:install Read more…

Install php7 on centos7

There are a couple of different ways to install php7 on centos7 – Installing yum-plugin-replace and inline-replaceing the whole php subsystem seems to be the easiest way: You need to have a couple or yum repo’s enabled for this to work properly: webtactic and epel rpm -Uvh https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm rpm -Uvh Read more…

MSc Thesis

Ive completed my MSc Thesis! I was awarded a grade A (81%) and an MSc with distinction :D The abstract from my thesis is below: SQL injection vulnerabilities remain one of the top ten most critical web-application security risks. SQL injection itself is a well understood subject. There are many Read more…

Installing vagrant on centos 7 with virtualbox provider

[et_pb_section fb_built=”1″ admin_label=”section” _builder_version=”3.0.47″][et_pb_row admin_label=”row” _builder_version=”3.0.48″ background_size=”initial” background_position=”top_left” background_repeat=”repeat”][et_pb_column type=”4_4″ _builder_version=”3.0.47″ parallax=”off” parallax_method=”on”][et_pb_text admin_label=”Text” _builder_version=”3.0.74″ background_size=”initial” background_position=”top_left” background_repeat=”repeat”] This is a short post on Installing vagrant on centos 7. First, you need to download vagrant – head over to http://www.vagrantup.com/downloads and copy the url to the current vagrant package in Read more…