| M | T | W | T | F | S | S |
|---|---|---|---|---|---|---|
| « Jan | ||||||
| 1 | 2 | 3 | 4 | 5 | ||
| 6 | 7 | 8 | 9 | 10 | 11 | 12 |
| 13 | 14 | 15 | 16 | 17 | 18 | 19 |
| 20 | 21 | 22 | 23 | 24 | 25 | 26 |
| 27 | 28 | 29 | ||||
This post has no technical value. Just experimenting with how much traffic I can get by putting the term “clickjacking” in a post. But seriously, if you want to know anything about it, go listen to Martin’s podcast interview with Jeremiah and Rsnake. You can also go over to Computerworld and take a look at […] ↓ Read the rest of this entry…
I was recently involved in web application assessment and discovered something that I wanted to pass along. Keep in mind that this has probably been utilized before, but it is something that I just noticed so … I wanted to throw it out for your amusement. To set the stage, I had been looking at […] ↓ Read the rest of this entry…
An interesting download to come out of the OWASP camp — books are now available for your reading pleasure. The initial group of books are: OWASP CLASP v1.2 OWASP Top 10 – 2007 Edition OWASP Top 10 – Testing – Legal 07′ OWASP WebGoat and WebScarab OWASP Code Review – 2007 (RC1) OWASP Evaluation and […] ↓ Read the rest of this entry…
So you don’t consider yourself to be XSS savy, but you would really like to do some free testing? Well look no farther…you just might have a solution. Introducing the XSSDB by GNUCitizen. The XSSDB (i’m assuming) is heading in the direction as the Metasploit Project, however, soley based on Cross-Site Scripting checks. A couple of […] ↓ Read the rest of this entry…
Billy Hoffman and Bryan Sullivan released a new book on AJAX Security this last month (or so). For those of you who aren’t familiar with Billy and Bryan, they are/were involved in the SPI Dynamics group before being acquired by HP Software in late 2007. I would highly recommend that you grab a copy of […] ↓ Read the rest of this entry…
It’s simply amazing to me that folks will fall for the marketing literature. Hacker Safe? I think not…. http://www.cioinsight.com/article2/0,1540,2246925,00.asp
It was just reported by SANS. Be careful if you go there.  Vet
Martin McKeay posted a few days back about keylogging software on client’s of HSBC Bank. Bruce Schneier pointed out this article this morning about the same issue. Both came to roughly the same conclusion: this is ridiculous. Yes, there are things the bank can do to help with this, but come one, where is the personal responsibility for […] ↓ Read the rest of this entry…
Politics can be fun, and it can be real ugly, and often both at the same time. And in this digital age, everyone has a chance to get involved, including script kiddies that have a political axe to grind. Go read the story here. But what got me about this whole deal was this quote […] ↓ Read the rest of this entry…
©0-2012 An Information Security Place | Powered by WordPress with Easel | Subscribe: RSS | Back to Top ↑