2.3 Web
Recent Activity
Items
-
HTTPS: Surf jacking makes it vulnerableCookies and redirection seem to be this year’s “attack vector du jour.” At DefCon, Mike Perry gave a rather disconcerting talk about surf jacking and how it can be used to capture SSL session cookies.
webferret
added
16 months ago
-
Internet ProxiesInternet Proxies Leo and I discuss the entire range of applications for Internet Proxies and Proxy Servers. We describe the many different uses for proxies while discussing both the benefits and the potential security and privacy liabilities created by filtering and caching web and other ...
webferret
added
16 months ago
-
Browser SecurityBrowser Security Leo and I discuss the broad topic of web browser security. We examine the implications of running "client-side" code in the form of interpreted scripting languages such as Java, JavaScript, and VBScript, and also the native object code contained within browser "plug-ins" ...
webferret
added
16 months ago
-
Cross-Site ScriptingCross-Site Scripting In this second installment of our three-part coverage of web-based remote code injection, Leo and I discuss cross-site scripting vulnerabilities and exploits. I quickly read through the 28 vulnerabilities discovered in popular software just during the previous month and ...
webferret
added
16 months ago
-
Intro to Web Code InjectionIntro to Web Code Injection Leo and I begin a three-episode series to discuss and examine web-based remote code injection exploits. Commonly known as 'Cross-Site Scripting' and 'SQL Injection,' these exploits are growing in popularity and strength as hackers discover increasingly clever ways to ...
webferret
added
16 months ago
Comments
Members
Active
-
Started Aug. 15, 2008
-
Rules of this twine
This Twine has invitation required.
Comments are allowed.
Members may ,add items ,invite people
Twine is about discovering, collecting and sharing the content that interests you. Learn More
Join Twine