Paid Advertising is
ha.ckers sla.cking
The web application security forum. A place where like-minded security professionals can talk about hacking into web applications and defenses to modern and next generation attacks. 
Go to: SearchLog In
Forums Topics Posts Last Post

The and web application security lab house rules and a place for you to introduce yourself if you like.

Options: RSS
215 1,407 March 26, 2015 12:47AM
News and Links

If you have some interesting news or want to throw up a link to discuss it, here's the place. Anything is okay, even shameless vendor launches (since that is often applicable to what we work on).

Options: RSS
574 4,007 March 03, 2015 04:49PM
Vendor Talk

This is a place for us to start seriously talking about vendors. Who's great, who's not, what's it cost, how does it relate to their competitors and would we buy it? A place to talk about snakeoil, and brilliant products alike. Marketing fluff is forbidden.

Options: RSS
22 120 March 18, 2015 08:22AM

Bug reports, feature enhancements or other complaints with the site, with us or just tell us what a miserable existance you have. No death threats or poetry please. Just kidding, no poetry please.

Options: RSS
86 458 March 23, 2015 11:42PM

Ever wanted to work as a "chief hacker" "security evangelist"? This is a place to post jobs or ask for work. Over time as I hear about job offers, we can consolidate them into this board.

Options: RSS
134 511 December 12, 2014 04:05AM

Who's got it? Who's giving it away? How to protect your privacy and steal it from other people. For intellectual privacy, personal privacy, and blackhats alike...

Options: RSS
102 536 March 06, 2015 07:19AM
Robots/Spiders/CAPTCHAs, oh my

How robots and spiders are causing issues, how to stop them. We can also talk about Completely Automated Public Turing Test To Tell Computers And Humans Apart - their use, their compliance issues, porn proxies, PWNtcha and other ways to defeat them.

Options: RSS
57 438 March 02, 2015 09:26PM
Mobile Devices

Breaking things on the go...iPhones, Androids, PalmOS, WinMo, etc...

Options: RSS
10 19 March 22, 2015 05:34AM
SQL and Code Injection

How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack.

Options: RSS
1,171 5,772 March 14, 2015 05:59PM

How do we crash systems, browsers, or otherwise bring things to a halt, and how do we protect those things?

Options: RSS
74 356 March 08, 2015 02:38PM
CSRF and Session Info

Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc....

Options: RSS
156 1,008 April 23, 2014 09:13AM
Full Disclosure

Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails.

Options: RSS
360 4,471 February 22, 2015 03:25PM

Whether this is about, or some other project you are interested in or want to talk about, throw it in here to get feedback.

Options: RSS
202 2,733 April 03, 2014 10:49AM

This group should mostly be dealing with how web applications enable networking security issues that are otherwise not there. Everything is being tunneled over port 80 now so what does that enable and how do we fix it?

Options: RSS
65 367 June 17, 2014 01:24PM
Search Engine Hacking and SEO

Ways to improve page rank, or deceptively get more users to your websites or away from your competition. Where you can discuss SEO (search engine optimization) issues as it relates to computer security.

Options: RSS
36 271 December 29, 2013 06:44PM

Ways to stop spam, detect robotic activity, and actually harm the spam trade, as well as how it works, how to circumvent filters, etc.

Options: RSS
32 179 December 30, 2014 08:55AM
Wireless Security

For 802.11 and bluetooth security people alike. Latest trends, attack surface issues, and prevention. How wireless security is becoming the new vector to hacking corporate websites and applications.

Options: RSS
39 236 July 24, 2012 07:27AM
XSS Info

Q and A for any cross site scripting information. Feel free to ask away.

Options: RSS
815 7,333 April 15, 2015 02:24PM

Script obfuscation, filter evasion, IDS/IPS/WAF bypassing... this is where it should live. Because this topic is too big to live anywhere else. Phj33r!

Options: RSS
76 809 June 30, 2014 07:01PM

Think it would be cool to build a sandbox around all that malicious code so we don't have to worry about it anymore? Or are you the guy who's going to break the sandbox just to show its flaws? Either way, this is the spot to talk about it.

Options: RSS
1 5 June 03, 2011 10:45AM
OMG Ponies

For any nonsense or banter that doesn't fit anywhere else. LoL! omg! ROFL!

Options: RSS
511 4,556 October 27, 2014 07:29PM