Bitrix Real-Time WAF Hack Competition
The Bitrix "Proactive Protection" security module withstood a massive hacker attack as part of the "Bitrix Real-Time WAF Hack Competition" at the "Chaos Constructions CC9" computer technologies festival in Saint-Petersburg,Russia.
"1C-Bitrix", the Bitrix’s Russian Representation Office , together with "Positive Technologies" organized a competition within the framework of the "Chaos Constructions CC9" computer technologies festival whose participant s were supposed to evade the Bitrix "Proactive Protection" security system that had been modified in advance to be vulnerable to some extent. The Festival took place on 29-30 August 2009 in Saint Petersburg, Russia.
The point of this hack competition was to gain more examples for analyzing common mistakes made by site developers that may occur during a web site creatinon and customization process by using a Bitrix platform, and also was a great opportunity to show how the "Proactive Protection" security system shield works in action.
There were more than 600 competitors trying to evade the "Proactive Protection" security filter (WAF / Web Application Firewall) and to find out the all made-in-advance vulnerabilities (e.g. SQL-Injection, Cross-Site Scripting XSS, Path Traversal and Local File Including) during two days of the Festival. There had been more than 25000 attacks recorded and effectively repulsed during the competition hours. The competition terms allowed not only the CC9 participants to try out their skills in hacking the Bitrix "Proactive Protection" security mechanism, but also for all comers from the internet.
The results of the hack competition have given the Bitrix team a great opportunity to re-detect all vulnerable elements and methods of possible evasion of the "Proactive Protection" security mechanism, this new data has also been used for modifying the WAF / Web Application Firewall. The "Proactive Protection" security system has been fully revised right after the competition and now the free updates are already available for the Bitrix customers and partners through the SiteUpdate manager. The Bitrix team continues to develop and modify all the Bitrix products to reach even higher levels of security and reliability for the benefits of its customers and partners.
date manager.
The Bitrix "Proactive Protection" security module withstood a massive hacker attack as part of the "Bitrix Real-Time WAF Hack Competition" at the "Chaos Constructions CC9" computer technologies festival in Saint-Petersburg,Russia.
"1C-Bitrix", the Bitrix’s Russian Representation Office , together with "Positive Technologies" organized a competition within the framework of the "Chaos Constructions CC9" computer technologies festival whose participant s were supposed to evade the Bitrix "Proactive Protection" security system that had been modified in advance to be vulnerable to some extent. The Festival took place on 29-30 August 2009 in Saint Petersburg, Russia.
The point of this hack competition was to gain more examples for analyzing common mistakes made by site developers that may occur during a web site creatinon and customization process by using a Bitrix platform, and also was a great opportunity to show how the "Proactive Protection" security system shield works in action.
There were more than 600 competitors trying to evade the "Proactive Protection" security filter (WAF / Web Application Firewall) and to find out the all made-in-advance vulnerabilities (e.g. SQL-Injection, Cross-Site Scripting XSS, Path Traversal and Local File Including) during two days of the Festival. There had been more than 25000 attacks recorded and effectively repulsed during the competition hours. The competition terms allowed not only the CC9 participants to try out their skills in hacking the Bitrix "Proactive Protection" security mechanism, but also for all comers from the internet.
The results of the hack competition have given the Bitrix team a great opportunity to re-detect all vulnerable elements and methods of possible evasion of the "Proactive Protection" security mechanism, this new data has also been used for modifying the WAF / Web Application Firewall. The "Proactive Protection" security system has been fully revised right after the competition and now the free updates are already available for the Bitrix customers and partners through the SiteUpdate manager. The Bitrix team continues to develop and modify all the Bitrix products to reach even higher levels of security and reliability for the benefits of its customers and partners.
date manager.
Advertise on APSense
This advertising space is available.
Post Your Ad Here
Post Your Ad Here
Comments