In this week’s Whiteboard Wednesday, Dan Kuykendall, Senior Director of Application Security Products at Rapid7, walks us through the technical evolution of web applications and their infrastructures so we can learn to better secure them.
Want to dive deeper into how Rapid7 application security solutions are built for modern technologies? Learn more about how we can secure web applications in your environment and how our products and services can fit into your application security program.
Hi. Welcome to this week's Whiteboard Wednesday. My name is Dan Kuykendall, Senior Director of Application Security Products here at Rapid7. Today I'm going to be talking about the evolution of web apps.Show more Show less
The web has been changing dynamically and drastically for a number of years, but I want you to be able to visualize how some of these changes are really taking place, so that you can understand what your applications look like behind the scenes and what you need to do to be able to test 'em properly.
The web, when we first started, was pretty straightforward. The browser would make a request to a server, so in this case it would say, "Get content, id=B," so these ... this is a parameter name and a value here. It would make that request and the server would respond with a bunch of HTML. The web browser would then render that page, and we'd have something to view. There may be links on that page, so let's say I want to click on content B here. I want to click on the link to B, well what would happen is, the browser would make a whole new request and it would throw away this first part, so now all of a sudden we're looking at an entirely new page. The whole thing was replaced.
Next time we're going to probably talk about single page applications and really how far this evolution has taking place, but that's it for this week's Whiteboard Wednesday. Thank you very much.