Scribd
Upload
54 views1 page

Isc2 Application Security Notes

ISC2 APPLICATION SECURITY NOTES

Uploaded by

seremkelvin.kks48
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
54 views1 page

Isc2 Application Security Notes

ISC2 APPLICATION SECURITY NOTES

Uploaded by

seremkelvin.kks48
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd

5.

Application Security (1 page)

Secure Software Development:

Application security focuses on protecting applications from


vulnerabilities during development and throughout their lifecycle.
Following secure coding practices helps ensure that applications are less
vulnerable to attacks.

Common Vulnerabilities:

 SQL Injection: Attackers can manipulate SQL queries to access or


modify a database.
o Prevention: Use prepared statements and input validation.
 Cross-Site Scripting (XSS): Attackers inject malicious scripts into
web pages viewed by other users.
o Prevention: Sanitize user inputs and use content security
policies.
 Buffer Overflow: Attackers exploit poorly written code to
overwrite data in memory.
o Prevention: Use languages with automatic memory
management and perform bounds checking.

Code Reviews and Penetration Testing:

Regularly reviewing code and conducting penetration testing helps


identify and fix vulnerabilities before they can be exploited by attackers.

You might also like