Local File Inclusion vulnerability.

17 Useful Htaccess Tricks and Tips

Today I want to tell you about this serious program from serious guys from IBM corporation.
It is widely told on OWASP site that you should or better - must use programs for automated testing of you application to make sure that you or your QA team didn't miss something.

Recently I was asked to check our application that we are currently developing for security issues. There were two reasons why exactly I was asked to do this:
1. I have the best experience in our team (bad one) regarding security-based issues.
2. I do really like this part of application development!

By mentioning my bad experience I mean that I've had a time when one of my projects had been hacked. I had to spend a lot of time to fix all those issues and make it not to happen again. Luckily - it didn't happen yet :)

So coming back the article itself and it's title... :)