Web application security - the fast guide Chapter 4: Be the attacker

Map Proofing • Hide your directories contents and structures • Use different root folders for user and administrator • put all JavaScript files to a single folder and be sure to omit the execution permission from that folder • remove all comment from production code • Never use absolute path to refer files, always use relative paths • The script should remove any directory traversal character like (../../) • Be sure to apply authentication on all directory contents and subdirectory 2017-05-10 Web Application Security Fast Guide (book slides) Application By Dr.Sami Khiami Slide 16

Web application security - the fast guide Chapter 4: Be the attacker | Page 16