Penetration Testing mailing list archives

Testing Middleware Application

From: Anant Iyer <iyer.anant.r () gmail com>
Date: Tue, 7 Jul 2009 09:47:25 +0530

Hello,

We have a middleware application to be pen-tested for security
bugs.The application serves requests from various front-end systems
(XML over HTTP) and depending on these requests, retrieves the data
from various back-end repositories.
The development team has built a front-end just for testing
(functional) this application in the UAT environment. In such a
scenario, I need some pointers on how should I perform the pentest of
this middleware application.

Regards,

Anant Iyer

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------

Current thread:

Testing Middleware Application Anant Iyer (Jul 07)
- Re: Testing Middleware Application Mervyn (Jul 07)
- <Possible follow-ups>
- Re: Testing Middleware Application Robinson DELAUGERRE (Jul 07)