Dark Reading

Popular WAFs Subverted by JSON Bypass

Web application firewalls (WAFs) from five major vendors are vulnerable to malicious requests that use the popular JavaScript Object Notation (JSON) to obfuscate database commands and escape detection ...
CSOonline

JSON-based SQL injection attacks trigger need to update web application firewalls

Security researchers have developed a generic technique for SQL injection that bypasses multiple web application firewalls (WAFs). At the core of the issue was WAF vendors failing to add support for ...
Visual Studio Magazine

Generate Useful Documentation for Your Web API Project

I wrote an earlier article about implementing HATEOAS in Web Services as a way of reducing documentation. In the comments to that article, a reader suggested that, if I really wanted to reduce ...