Ajax security and modsecurity
Ajax security is a major issue for next generation Web applications. The techniques discussed in
this article can give a head start to security professionals to improve the security posture of Web
applications. Web 2.0 applications try to integrate various sources, including untrusted
information sources, at one place. This trait of Web 2.0 applications adds new attack vectors to
the landscape. The advantage of Ajax fingerprinting with XHR is twofold: one, it gives a clear idea
about the origin of a request and, two, it makes it harder for automated attacks and crawler
modules to launch discovery techniques. With Web application firewalls becoming an important
part of Web application defense, one can leverage this mechanism to defend the web