Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
If you have some interesting news or want to throw up a link to discuss it, here's the place. Anything is okay, even shameless vendor launches (since that is often applicable to what we work on). 

Current Page: 1 of 1
Results 1 - 3 of 3
2 years ago
W177.1.am
Addendum: It's also quite easy to extract information from a content secuirity policy website. For instance, say FB was CSP protected. I could create a bogus account and program a worm to send user's details to that account as an FB message. The FB mail system would then very kindly forward that information on to me. But, not if CliqueSafe was implemented, because if it were, I could lock down
Forum: News and Links
2 years ago
W177.1.am
A unique password is generated for each user, which is tied to their session. The system can be configured to generate a differnent password for each page refresh, though this would be at the cost of caching. Regarding CSP: There are a number of types of website where a content secuirty policy is inappropriate. Most notably mash-ups and social networks, where a large portion of the content i
Forum: News and Links
2 years ago
W177.1.am
I am cautiously (and shamelessly) launching a product called CliqueSafe, www.cliquesafe.com, which is a code execution prevention mechanism for JavaScript designed to prevent Reflected, Persistent and Self-XSS from succeeding in its goal: i.e. extracting information from a website and/or causing the website to manner not intended by the owner. CliqueSafe is a client/server solution, which uses
Forum: News and Links
Current Page: 1 of 1