Detecting suspicious behaviour in a web application - what to look for?

Posted by Sosh on Stack Overflow See other posts from Stack Overflow or by Sosh
Published on 2010-05-08T17:23:48Z Indexed on 2010/05/08 17:28 UTC
Read the original article Hit count: 210

I would like to ask the proactive (or paranoid;) among us: What are you looking for, and how?

I'm thinking mainly about things that can be watched for programaticaly, rather than manually inspecting logs.

For example: - Manual/automated hack attempts - Data skimming - Bot registrations (that have evaded captcha etc.) - Other unwanted behaviour

Just wondering what most people would consider practical and effective..

© Stack Overflow or respective owner

Related posts about security

Related posts about web-applications