I have always enjoyed breaking solutions. I studied math, and I was that jerk who pointed out the counterexample or fringe case to the proposed solution.
I was introduced to web app security on 04/09/2008 and I haven't been able to stop researching and testing my own and my colleagues sites. I think I love it. Can you love a concept? I guess if you can have a war on Terror, then I can love web app security.
*You* can love all concepts, but there will always exist concepts which are not loved. To prove this, consider the following example:
Let X be a set of all people who are unloved. X is non empty since clearly id AND thrill both belong to X. Now I assert that each element of X is also conceivable. Clearly id and thrill were both conceived (just ask their respective mothers) as were every other person in set X since they are by definition persons. If you're of a religious persuasion, you could argue that the original persons, say adam and eve, were not conceived, but they clearly are not in X since they are loved by many. So we've established that elements of X are conceivable and not loved. By definition, conceivable objects can be called concepts. Thus each element of X can be considered a concept. Thus each element of X is a concept, and by construction, also unloved. QED.
On a related note... say C is the set consisting of all counter-examples. Are all elements of C conceivable?
Hi,
I've just registered, but have been reading RSnake a long time - I got interested in webappsec in -06, when I worked at Yahoo, then got *really* interested after hearing Jeremiah Grossman speak about hacking intranets. Since then I've kept learning more and more.
I found this forum a while ago, when you guys had that competition for a javascript self replicating worm - that was some cool stuff!
Originally, I am a programmer (Java, J2me, C/C++, Javascript and recently python, smalltalk). Have a little baby, she just woke up, gotta run!
Edited 1 time(s). Last edit at 01/26/2009 03:23AM by holiman.
student studying for network security from sg.
my most interest lies in web security n network forensics. hopefully here to share knowledge and gain more for you n me! :D
Hey surecool73, I'm thrill and I'm thrilled you're thrilled. And if you tell us where you read the great reviews, we'll make sure to change those ASAP! Welcome aboard!
--thrill
---
It is not the degrees you hold, but the mind you possess. - thrill
I want to create a full service internet bureau in the near future.
Though, i don't have much code skill, only some HTML/CSS/Javascript.
Because i don't really have the skills/time to do allot of projects myself i have hired 20 Indian people to get things done.
We already did 4/5 projects in 2 months and they're looking fine and customers are very satisfied.
Though, a friend of me, from the Netherlands checked the security and he XSS'd one of my projects in 2/3 minutes. So that's why i'm here. I Want to know how to secure the websites against any attacks.
Just want to have the basics setup done. I know the Indian poeple should do this, but i want to know how this works myself aswell, so i can demand some coding from my Indian associates.
So, if you have any tips or what-so-ever, links / papers i can read to get the basics done for my websites, besides learning PHP / My SQL/ Ajax and XHTML etc. please let me know.
I'll be reading all posts on this forum to keep updated.
Big cheers to all skilled poeple, i want your knowledge =)
Hi everyone. It's nice to be here. I am more of a hobbyist with networking and the like though I have in the past worked a ticket system for a datacenter. Mostly I'm a classical and jazz pianist. Nothing special
you can call me d0ctr-X . Im a self taught programmer, a c0mp security guys wanna make my career in VA and PT , i am a computer science student ,also doin a job in a small IT company,
i 10ve playin9 with my gadgetz
thanks you Rsnake and friends for creating and maintaing such a nice forum..
Where to start??? My first computer experience was when I was 7. I got a TRS80 for Christmas that I thought would replace my Atari. Boy was I wrong, but that Atari processor sure was a great compliment to the GIANT 64K of memory that trash80 had. Mom said no more computer parts until I did my homework with what I was given. How the fuck am I supposed to print mom?
I ran a FIDO mail stop for years, first off my OmenBBS, then onto VBBS on the Amiga and then again VBBS on DOS.
All the while working with original DOS on those old Apples at school. If all this info doesn't date me then you're all too young.
Now, I'm a dyed in the wool Slackware user in love with BSD and running UBUNTU, of all things. My background is in penetration testing and I ran my own consultancy for 4 years until an incredible bankruptcy in '04. Now I am just trying to find my way back to THE PATH. There is only one.
The Open Source community has lost sight of where they were going, UBUNTU being proof.
Useful Knowledge: I am very familiar with the METROII language.
------------------------------------------------------------------------------------------------------------
"People who say it cannot be done should not interrupt those who are doing it.";
labs : [www.businessinfo.co.uk]
blog : [www.thespanner.co.uk]
Hackvertor : [hackvertor.co.uk]
Howdy guys, I'm Menztrual. I started in the security scene in 2004 and have come back after finally being able to give up this life ruining addiction called "WoW" that I've been on for the last 12 months...
Due to old places I used to hang out now dead as well as fellow coders disappearing; I'm hoping to find a new home at slackers to re-touch up my skills, get back to where I left off and find some new buddies in the security scene.
