If so, click to download 15 days full version for free!
Configuration files are the one of the most popular storage areas to place resource credentials, such as database passwords, ldap connectivity passwords, etc.
Below snippet shows such a configuration piece including using empty password that may be used for authentication.
<configuration> <appSettings> <add key="password" value="" /> <add key="secret" value="" /> </appSettings>
This will enable brute force or dictionary attacks more practical and easy to employ by attackers.
If so, click to buy now for yearly subscriptions!