Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
The ha.ckers.org and sla.ckers.org web application security lab house rules and a place for you to introduce yourself if you like. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Pages: Previous1234567891011...LastNext
Current Page: 6 of 13
Re: Introductions
Posted by: WhiteAcid
Date: February 01, 2007 01:42AM

We need to protect the innocent little kids!!
We need to lock up id!!

Welcome aboard guys.

Don't forget our IRC: irc://irc.irchighway.net/#slackers
-WhiteAcid - your friendly, very lazy, web developer

Options: ReplyQuote
Re: Introductions
Posted by: bubbles
Date: February 01, 2007 08:02AM

Gimme three more months lol.

-bubbles
http://webmastertutorials.net

Options: ReplyQuote
Re: Introductions
Posted by: id
Date: February 01, 2007 01:20PM

WhiteAcid Wrote:
-------------------------------------------------------
> We need to protect the innocent little kids!!
> We need to lock up id!!

yes, think of the children!!!

/they're tasty

-id

Options: ReplyQuote
hakin9 magazines
Posted by: lovewadhwa
Date: February 16, 2007 11:32AM

i need hakin9 magazines for free.Can anyone on this forum help me regardin the same.will be highly obliged.
regards
love wadhwa
redhat certified engg.

Options: ReplyQuote
Re: Introductions
Posted by: rsnake
Date: February 16, 2007 05:11PM

And with that lovely introduction....

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: Introductions
Posted by: tx
Date: February 16, 2007 05:15PM

I completely read the last line of lovewadhwa's introduction as "redhat certified egg"

-tx @ lowtech-labs.org

Options: ReplyQuote
Re: hakin9 magazines
Posted by: ntp
Date: February 16, 2007 05:17PM

lovewadhwa Wrote:
-------------------------------------------------------
> i need hakin9 magazines for free.

Hakin9 is a magazine you can find on the shelves at Barnes and Noble. If you need to read them "for free", you simply walk down to the store and read them in the store.

If you are referring to the digital edition instead of the print edition, this is understandable. I have paid for a few individual articles myself - some were worth it ; some were not.

Most of the information in hakin9 is available online elsewhere for free. Many of the articles are already papers done by the authors. You can see a list of the authors here:
http://en.hakin9.org/content/display/30
Which even gives links or references to where they work/blog/eat/etc. Some also have a preview, so you can copy/paste the content into Google to find a link maybe to the original content.

When I signed up for a hakin9 account on their website - it allowed me to access 8 pre-specified articles for free (if there were random or selectable, I could simply setup more than one anonymous account to read all the articles).. Many articles are also available for anyone to download from their website for free (usually these are in PDF).

Finally, if you are too coward to even setup an account, you can always use this bugmenot account, albeit there is probably no use to it at this point (except maybe using it for assessment purposes e.g. crawling ACL's as different user roles in order to perform differential analysis, cookie poisoning, additional places to mess with HTML forms, parameter tampering, injection points, etc). Although since user creation is free, Tor+CGIProxy(SSL) is free, and Trashmail is free - I don't see the point of not setting up your own anonymized account to do this exact same thing.

http://www.bugmenot.com/view/en.hakin9.org

Options: ReplyQuote
Re: Introductions
Posted by: maluc
Date: March 02, 2007 02:49PM

thought i'd reintroduce myself if anyone forgot who i was by now (and to the many new faces)

i'm maluc, and i'll be a lurker for a while longer .. perhaps until as long as may :T

webappsec is still my passion, but life has a habit of getting in the way .-.
i'm still tinkering behind the scenes a bit, one day i'll have the time to write it all up - although i'm happy to see a couple of the things have been independantly found by others too anyway ^^

glad to see this forum has taken off since i was last here, i'm a couple thousand posts behind now ^^;

-maluc

Options: ReplyQuote
Re: Introductions
Posted by: WhiteAcid
Date: March 03, 2007 01:09AM

We've been wondering where you were. Glad to know you're around. I hope the tinkering goes well.

Don't forget our IRC: irc://irc.irchighway.net/#slackers
-WhiteAcid - your friendly, very lazy, web developer

Options: ReplyQuote
Re: Introductions
Posted by: rsnake
Date: March 03, 2007 05:19PM

Actually I have been wondering the same thing. Welcome back (even if only as a lurker). Post whenever you have time. I know we all could benefit by it.

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: Introductions
Posted by: Israel213
Date: March 04, 2007 10:58PM

Hey there, I think I've seen some of you guys in other forums. White Acid...this means you! Nothing bad though, just shows me this forum's credible. If your wondering I'm a late blooming college student that can't wait to graduate. I'm into Linux, C/C++, Java, a little Web Design, and anything to do with security/hacking. I don't claim to be an expert on these subjects, just that I have a general interest, some background, and a great desire to keep learning. Hopefully I pick up more as I go through these forums.

Options: ReplyQuote
Re: Introductions
Date: March 04, 2007 11:53PM

If you find a little free time to read up on suggested articles here, and test some things out for yourself you should get a very good grip on it all.


Awesome AnDrEw - That's The Sound Of Your Brain Crackin'
http://www.awesomeandrew.net/

Options: ReplyQuote
Re: Introductions
Posted by: rsnake
Date: March 05, 2007 10:13AM

Welcome Israel213, no need to be an expert, so no worries there. Everyone is here to learn from one another, so don't hesitate to ask questions or chime in if you have something to add.

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: Introductions
Posted by: jungsonn
Date: March 06, 2007 09:52PM

Yah maluc, missed your great input on XSS issues, nice you posted a little message after I PM'ed you, I really thought you where behind bars or something -can't blame - :) yeah I read stories about a couple of guys busted for some XSS stuff a while back, and so I wondered.

Options: ReplyQuote
Re: Introductions
Posted by: maluc
Date: March 07, 2007 11:19PM

lol.. well it'd take a while for the trial and all.. so u'd know if i got locked ups _-_ (unless all those unpaid speeding tickets now in warrant status finally catch up to me)

anyway, i'm leaving for DC in about 8 hours.. and will be in virginia for a week. so i guess i wont catch up over spring break as i thought i would .-.

anyone in either of those two states (DC = maryland far as im concerned) this next week lemme know .. will have a bit of free time ^^

-maluc

Options: ReplyQuote
Re: Introductions
Posted by: pritchie
Date: March 08, 2007 09:24AM

Hi, I am a penetration tester in the UK I mainly test web apps and yes I see lots of XSS everyday same as you guys.

I spent many years programming hobby things in PHP, and stuff at uni in JSP amongst other things and guess I transfered the skills over. Found this forum when looking for disclosures as I am currently talking to my first two sites/vendors over some stuff I found under my companies disclosure policies. Wondered if they had been found don't seem to have.

-- I think we are out of l33t aliases so I used my name.
http://www.otherendofthespectrum.com

Options: ReplyQuote
Re: Introductions
Posted by: rsnake
Date: March 08, 2007 10:38AM

Hey, pritchie, welcome! Yah, we haven't looked at every company out there, but if you inadvertently slip the name, there is a good chance they'll end up on the list sooner or later. :)

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: Introductions
Posted by: pritchie
Date: March 08, 2007 04:19PM

That would be giving the game away naming the sites.

The bigger of the two vendor/sites happen to be very hard to get hold of. So they might be inviting the full disclosure route that I was hoping to avoid. Bah, they can enjoy their name on theregister if they like :). It is the waiting to see if they are pissed off at you for finding something or glad that you weren't being malicious in anyway that kills me!

-- I think we are out of l33t aliases so I used my name.
http://www.otherendofthespectrum.com

Options: ReplyQuote
Re: Introductions
Posted by: HT
Date: March 13, 2007 11:09PM

Hey Hey,

I finally registered here (been putting it off for a while)... so I figured I might as well introduce myself as well.

I work for nCircle Network Security (Vulnerability and Risk Management Vendor, also entering the Compliance space). I figure there's no sense in hiding that since it's everyone...

WebAppSec has been an interest for a while but became an even bigger interest when I started writing a tool to spider websites and seek out XSS / SQL Injection. I'm currently working on a proposal to do a public release of the tool (updated and modified to include additional tests / checks) at an upcoming conference.

On the side I blog at both http://blog.nCircle.com and http://www.ComputerDefense.org. I also act as a moderator over at AntiOnline.com

Now you know as much about me as I know about myself :)

Peace
HT

Check Out My IT Blog: http://www.ComputerDefense.org

Options: ReplyQuote
Re: Introductions
Posted by: majohn
Date: March 14, 2007 01:47AM

Howdy all. After lurking here for a while and recently using sl.ackers.org for a small battle of wits with Kuzza55 http://sla.ckers.org/forum/read.php?13,7607 , I think it is about time for a proper introduction:

I work as a software/webapp-security researcher at the University of Hamburg, Germany. Most people here probably know my anti-pinning stuff http://shampoo.antville.org/stories/1451301/ but I also work on topics like CSRF http://www.owasp.org/images/4/42/RequestRodeo-MartinJohns.pdf , JS-malware http://databasement.net/labs/localrodeo/ or XSS. Lately I became more interested in security properties of programming languages especially in the context of code injection problems. I am somewhat unsure how interesting the outcome of this research will be for the audience of this forum though. We will see...

Oh, and I have a blog http://shampoo.antville.org .

- martin

Options: ReplyQuote
Re: Introductions
Posted by: rsnake
Date: March 14, 2007 10:16AM

@HT - that's great, I'd definitely like to see your tool, and if you can share bits and pieces ahead of time I'm sure this board could give you tons of input before you get ready to launch it. Welcome!

@majohn - I wondered when you'd finally join, you bastard. ;) I'm really glad to have you, as I think the anti-DNS pinning stuff in particular is really becoming a hot-button topic as more people understand it. Welcome!

- RSnake
Gotta love it. http://ha.ckers.org



Edited 1 time(s). Last edit at 03/14/2007 11:12AM by rsnake.

Options: ReplyQuote
Re: Introductions
Posted by: HT
Date: March 14, 2007 10:33AM

@RSnake - I'd love to have your feedback and insight as I move forward with it... I may also make pre-release versions available on the forums. The forum is definitely interesting, I'm glad I could finally find the time register :)

Options: ReplyQuote
Re: Introductions
Posted by: rsnake
Date: March 14, 2007 11:13AM

Yup, absolutely, and even before then if you just want to bounce ideas off of us, feel free. I know that's one thing we would probably all want to have a say in, since we would be your target consumer for such a tool.

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: Introductions
Posted by: HT
Date: March 14, 2007 02:26PM

Definitely focus towards this group of people... I'm sure you've got access to my email address that I registered with... If not it's on my website.. Feel free to touch base with me, and I'll walk you through what I've got so far and the modifications I plan on making... I'll get some feedback from you and then write in the changes and release that version on here for everyone else.. If that's cool with you.

Options: ReplyQuote
Re: Introductions
Posted by: rsnake
Date: March 14, 2007 05:31PM

Said base has been touched.

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: Introductions
Posted by: Jib
Date: March 14, 2007 09:46PM

rsnake Wrote:
-------------------------------------------------------
> @HT - that's great, I'd definitely like to see
> your tool,

I think that's a topic for a different forum, you sick bastard! :p

[No sooner does man discover intelligence than he tries to involve it in his own stupidity.]
[Jaques Cousteau]

Options: ReplyQuote
Re: Introductions
Posted by: tomfreakz
Date: March 20, 2007 09:37AM

Hi all.. call me tomfreakz
I'm from Bandung - Indonesia

I'm interested in web design & development.
and whuooo.. I have just love web security
its because sla.ckers & ha.ckers
Right now my focused reading is XSS..

and sla.ckers.org is very helpfull..
nice site..

.. thanx everyone :)

Options: ReplyQuote
Re: Introductions
Posted by: rsnake
Date: March 20, 2007 10:45AM

Thanks, Tomfreakz! Welcome to the forums! Feel free to ask any questions you like.

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: Introductions
Posted by: Syl4r
Date: March 21, 2007 12:27PM

I am SYl4r

New to the forums. Rsnake you rule. Hoping to speak to you soon and lookign forward to bouncing ideas off you.

Options: ReplyQuote
Re: Introductions
Posted by: Tribute
Date: March 21, 2007 04:09PM

Welcome Syl4r. Heroes fan?

Options: ReplyQuote
Pages: Previous1234567891011...LastNext
Current Page: 6 of 13


Sorry, only registered users may post in this forum.