Cookie Authentication in ASP.NET CORE MVC Web Application

Authentication is the process of identifying the user that is who you are. Another related term is Authorization is this process of identifying whether you have authorized to access something in web it will be website pages. Authorization is the important module, most of the projects would not complete without covering this area.  Also, there … Continue reading Cookie Authentication in ASP.NET CORE MVC Web Application

Advertisements

WordPress Plugins Vulnerability recently found

Recently studies found that there are few serious vulnerabilities in popularly used WordPress plugins which can be easily exploited by hacker.  Those vulnerable WordPress Plugins are, WP Database ResetInfiniteWP ClientWP Time Capsule WP Database Reset This plugin is used to reset the tables in database either partially or completely. Hence this plugin playing big role … Continue reading WordPress Plugins Vulnerability recently found

10 best practices to secure ASP.NET Core MVC Web applications

In this article, you are going to walk-through 10 best practices which everyone must consider in security aspect while writing web applications in ASP.NET Core and MVC framework. These security vulnerabilities are common to all web application framework like PHP. Below are the few major security vulnerabilities which can be exploits by hacker to gather … Continue reading 10 best practices to secure ASP.NET Core MVC Web applications

Latest WhatsApp Features added in December 2019 Update includes Group Privacy Settings

Here you can find the feature which introduced in latest WhatsApp update which done on December 2nd, 2019. Group Privacy Settings This is one of the useful features, which helps you to restrict people from adding you to groups. Most of the times you face the situation when you would add to group but where … Continue reading Latest WhatsApp Features added in December 2019 Update includes Group Privacy Settings

How to update strong Cipher Suites in Windows server?

Here, I have explained about the Cipher Suites, recommended cipher suites and the how to apply only recommended cipher suites which has set of strong algorithm and no known security vulnerabilities in Windows Server. What is Cipher Suite? Cipher suite is a set of cryptographic encryption algorithms which provide the secure, encrypted connection over Transport … Continue reading How to update strong Cipher Suites in Windows server?

How to Update TLS Supported versions in Browser Internet Explorer, Firefox and Chrome?

In our earlier articles, we have learned about TLS protocols, and how to disable the older versions of TLS protocols in Windows Server and Apache servers. Also, we learned about browser support for older and newer versions of TLS protocols. There I have mentioned a point that all modern latest version browser by default supports … Continue reading How to Update TLS Supported versions in Browser Internet Explorer, Firefox and Chrome?

How to Disable/Enable SSL/TLS protocols in Windows Server?

Find the steps to enable or disable the SSL/TLS protocols in Windows Server. Here the screenshot taken from Windows Server 2016. Same steps will be applicable for all the Windows Server version. Step 1: Open Registry Editor using the command regedit from run window. Step 2: Move to below path in the left side pane … Continue reading How to Disable/Enable SSL/TLS protocols in Windows Server?

How to Disable/Enable SSL/TLS protocols in Ubentu/Apache/Linux Server?

To Disable/Enable the SSL/TLS protocols those are SSL 2.0, SSL 3.0, TLS 1.0, TLS 1.1, TLS 1.2 and TLS 1.3, you should configure the SSL setting configuration file in Ubentu/Apache/Linux Server. You must first locate the SSL configuration file location. You can find the configuration file in below path, /etc/apache2/sites-enabled/*.conf Note: If not found check … Continue reading How to Disable/Enable SSL/TLS protocols in Ubentu/Apache/Linux Server?

Basic of Transport Layer Security (TLS)/Secure Sockets Layer (SSL)

Transport Layer Security (TLS) is a protocol which used to communicate between client and server over internet. This protocol ensures the data integrity, security, privacy and data encryption between the connections. So, the HTTPS requests and responses are communicated securely using this TLS protocol. Transport Layer Security (TLS) is next generation of SSL protocol. SSL … Continue reading Basic of Transport Layer Security (TLS)/Secure Sockets Layer (SSL)

Security Precaution should take on WhatsApp

1. Enable Two Step Verification Two Step authentication is nothing, but it second level of authentication will ask you to enter the 6-digit pin code to register your phone number to set up WhatsApp. First you use your phone number, then 6-digit code which you configured. To can enable the two-step authentication feature, Menu (3-dots) … Continue reading Security Precaution should take on WhatsApp

Security Best Practices for Web Applications

Introduction Security is one of the important areas, we should consider while developing web applications. In real time, there are lot of security related vulnerabilities. Here we can discuss about steps which we need to take to avoid these security related vulnerabilities while developing web applications. Below are the topics will be covered under this … Continue reading Security Best Practices for Web Applications