Development / Security

Evaluating Node.js Frameworks, Hacking a WordPress Site and more from the Sponsored Feed

18 Aug 2014 8:29am, by

What are the differences to consider with Node.js frameworks? How easy is it to hack a WordPress site? And how can you use analytics to predict revenues better? These are the kinds of question that are explored in the posts on The New Stack sponsored feed, which appears at the bottom of every post. The items in the sponsored feed link back to the sponsor’s blog. The more the sponsor posts, the more their posts appear at the top of the feed.

Adallom: Recap of our BlackHat 2014 USA Workshop

I attended the Adallom workshop at Black Hat. I learned how really easy it is for a hacker to do a man-in-the-middle style intrusion and why SaaS is the hot new vector for malware attacks. In the workshop, Adallom “challenged the attendees to find a vulnerability in an official WordPress plugin, exploit it and elevate themselves to gain administrative privileges.”

Apparently, people have been asking to take the challenge, so Adallom has posted the info on their web site. It’s everyone’s chance to “capture the flag”, gain admin privileges, and publish their own post on the site if they succeed.

For reference, Adallom has the slides from the workshop available for download.

Tidemark: Analyze This: Introducing Tidemark Advanced Analytics:

Tidemark launched a new service designed to help companies develop more accurate plans and risk-adjusted forecasts to incorporate the data most likely to influence outcomes. Managers “can sift out confusing or misleading correlations that too often leave them drowning in data.” Here’s an overview:

Tidemark__Cloud-based_Enterprise_Planning__Reporting__Spring_14_Release

 

Apigee: The Why and How of APIs: The Open API Model

APIs in the wild are like advertising with the service built in. Apigee’s latest post illustrates how open APIs have been effective for companies, the markets they open up, and how they can be applied to solve problems:

  • Breakthrough innovation: The most common of all use cases, and a well-known paradigm given the success of companies like Twitter, Foursquare, and Facebook, this is innovation by leveraging the creativity and know-how of hundreds of thousands of developers around the world using your API to create cool apps and make big breakthroughs.
  • Niche markets: A company may have a geographical or demographic niche that represents a nice new value proposition for the business. But it may not have the resources or the budget to get the value proposition into that niche. Taking advantage of an open API program, any developer can create an app that generates new value for both themselves and the API provider.
  • Direct incentives: A directed approach may be to run a contest or a hackathon with an incentive to build against your API. The automotive industry, for example, has successfully used this approach to solve problems. R&D budgets and resources are extended beyond the borders of the business to spur innovation on a broad scale.

New Relic: Evaluating Node.js Frameworks: hapi.js, Restify, and Geddy

For the most part, Adron Hall uses the Node.js framework Express.js. In a post last week for New Relic, Adron (who also writes for The New Stack) has a post about hapi.js, Restify, and Geddy. He summarizes his evaluation this way:

Hapi.js, Geddy, and Restify each have their strengths and weaknesses. Hapi.js provides a great minimalistic starting point for providing a base Web app or API services. Geddy has to its credit being one of the most complete, ready-to-roll, Ruby on Rails-like frameworks to get a Web application started quickly. Restify is a solid, complete, and enterprise-ready API generation and server library. In each of these spaces the respective library excels at what it does. When you’re in the market for starting an application and not sure which library to use, these are all valid contenders.

Download the full white paper to learn more about Kinvey’s take on the “Enterprise Mobility Maturity Model,” which includes examples of the types of app built at each stage of a company’s app development maturity cycle. Digital Ocean and Cloudosft also have posts that we cited last week. Digital Ocean takes a look at using OAuth 2. Cloudsoft has some videos from the recent Docker meetup in Edinburgh.

Feature image via Flickr Creative Commons.

A newsletter digest of the week’s most important stories & analyses.

View / Add Comments

Please stay on topic and be respectful of others. Review our Terms of Use.