Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc.... 

Pages: 1234Next
Current Page: 1 of 4
Results 1 - 30 of 96
2 years ago
ntp
https://github.com/SecurityCompass/android_emulator_spoofing
Forum: Mobile Devices
3 years ago
ntp
Perhaps there is a chroot environment in place. You might want to try fimap.googlecode.com and see if you can get php://input instead of just reading files. If so, then you can get a remote shell via LFI. If there is file upload functionality on the site, then you can upload your own PHP (even in an image through the EXIF tags) and include it, which is similar to the above. See if you ca
Forum: SQL and Code Injection
4 years ago
ntp
It appears to be about a year and a half old. Get the new version
Forum: DoS
4 years ago
ntp
"Burp is awesome - I think I talk about that one the most because it is by far my favorite for manual professional penetration testers, as opposed to scanner jockies. It's also the least scalable. At least as of today..." I know that 3250 US dollars worth of tools per person per year sounds like a lot, but there is value to give everybody you know (or force them to buy) a copy of Burp
Forum: Projects
4 years ago
ntp
The shellphish guys paper appears to have confirmed my suspicions. You basically have scanners that maintain a high level of quality: 1) HP WebInpsect 2) Netsparker Pro 3) Acunetix WVS 4) Burp Scanner The above are my favorites from best to worst, but really it would be nice to have all 4, at least on occasion. And scanners that do not hold up to today's tech or are just otherwise low
Forum: Projects
4 years ago
ntp
nEUrOO Wrote: ------------------------------------------------------- > If you want a benchmark for your crawler: > http://code.google.com/p/wivet/ Wivet stats are interesting to me. Recently, I've benchmarked quite a few scanners. Netsparker Community Edition -- 84% Google Skipfish -- 46% Qualys WAS -- 33% GNUCITIZEN Websecurify -- 21% Burp Scanner -- 14% Honestly, it's be
Forum: Projects
4 years ago
ntp
iofuzz was an entire bootable ISO meant to be used as a VM (converted to OVF, vmdk, VHD, etc) for fuzzing from guest-to-host created by Tavis Ormandy at Google. Others such as Kostya at Immunity Security busted host-to-guest using some of video drivers or something in a BlackHat presentation called CloudBurst. McAfee and many others have worked closely with VMware, Oracle/Sun, Citrix, Micros
Forum: OMG Ponies
5 years ago
ntp
http://shreeraj.blogspot.com/2009/04/web2proxy-beta-web-20-application-proxy.html
Forum: News and Links
5 years ago
ntp
so what you're saying is "Don't diff files after revisions and look for fixes to security bugs"? more specifically, it seems you're saying "do reveal how you found a bug". nobody is going to reveal how they found a bug. probably half the time it's some really lame reason (like changelogs). sometimes the reasons skate legal or ethical boundaries (or they may appear to). i
Forum: Vendor Talk
5 years ago
ntp
PMO, compliance, internal audit, and executives all want the same thing for risk management: to identify risks and get proper security classifications around them. developers don't matter; they just naturally make mistakes. the best way to train them is to demo the exploits before they start coding, or better -- iteratively (so that they know what to think about). the best way to help them is
Forum: Projects
5 years ago
ntp
@ holiman: it's been out for months. i think i got to review it before it went public.
Forum: Vendor Talk
5 years ago
ntp
@ holiman: buh........ blah blah blah Gartner blah blah blah haven't read iet myself blah blah blah relevance
Forum: Vendor Talk
5 years ago
ntp
Fortify is great with packs if the language and framework are supported. http://www.cigital.com/securitypack/ The customization is decent in Fortify, but does leave a lot to be desired. http://www.cigital.com/papers/download/Framework%20for%20Custom%20Rules.pdf so people turn to Checkmarx -- Checkmarx works with the object models better and doesn't require compilation/build Many are using
Forum: Vendor Talk
5 years ago
ntp
yum install openvpn
Forum: Wireless Security
5 years ago
ntp
Oh sheesh. Fine, I'll post the links and see if I get some responses. * TeamMentor Evaluation - feature limited access to content (username/password: demo/sisecure2007) http://remote.securityinnovation.com:8088/TeamMentor/ * Introducing Two Exciting 10 Minute Mini-Courses Introduction to Cross-site Scripting - with JSP Examples http://www.securityinnovation.com/ten-minute-courses/Intr
Forum: Vendor Talk
5 years ago
ntp
Another factor to consider is the maturity of the organization. If the organization-under-test regularly does network pen-tests or vuln scans - along with remediation - then it may take a lot less time. If they've never done an app pen-test, then regular network vuln scanning may not make the app pen-tests go any faster, although it certainly helps to a small degree. So organizational readine
Forum: OMG Ponies
5 years ago
ntp
Need to do a background check on someone? Find their SSN! http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9114199 Verify a name and SSN! http://www.ssa.gov/employer/ssnv.htm Search and find all criminal history using only name and/or city! http://www.criminalsearches.com
Forum: Privacy
5 years ago
ntp
Those answers were terrible. Another source of mis-information is ISECOM (which you would think could give the best advice, but no...). Never believe anything you hear in an Ethical Hacking training course or on LinkedIn. I would plan for 2 days per IP or virtual-host for a local-LAN QualysGuard or WebInspect style scan. It's also best to first run these tools one-IP at a time, with DNS co
Forum: OMG Ponies
5 years ago
ntp
http://shampoo.antville.org/stories/1834123/
Forum: Projects
5 years ago
ntp
There is an awesome article about this new LiveCD on MadIrish: http://www.madirish.net/?article=218 The screenshots and tool list make this review a cut above the rest!
Forum: News and Links
5 years ago
ntp
Has anyone tried either of these? WiFiSlax 3.0 WiFiWay 1.0 http://www.terminal23.net/2008/09/yet_more_wireless_testing_live.html Curious if they are worthwhile over BT3 for any reason. My Atheros card works with BT3, so I don't see any point in trying them, but if someone knows something that I don't -- please enlighten me.
Forum: Wireless Security
5 years ago
ntp
Does anyone have access to Security Innovation TeamMentor? It was announced in mid-April, 2007. I checked out the demo and collateral, and it's coming along nicely. Too bad it costs $25k. SI's e-Learning offerings (check out the demos!) also look great. I was hoping that their stuff would be priced better, especially considering that Holodeck is one of the cheaper fault-injection test har
Forum: Vendor Talk
5 years ago
ntp
Grendel-scan has a Javascript driver inside of it. Net-Square and Blueinfy have tools to crawl Ajax. w3af has a DOM-XSS module. Of course, AppScan, WebInspect, and Hailstorm support Ajax. I'm not sure if NTOSpider supports Ajax because I've never used it before, although I find it funny that RSnake would support a web application scanner that doesn't support Ajax or Flash (see the banner
Forum: XSS Info
6 years ago
ntp
WPA-Personal has the AP and a crypto exchange. WPA-Enteprise has... well... somebody please explain it because I don't feel like spending the next half hour reading about it and the following ten minutes writing about it. Also - No, WPA2-Personal can in many cases be made to not use a shared-key. Using a shared-key would be stupid, I agree. For example, HostAP can configure per-MAC (i.e. per
Forum: Wireless Security
6 years ago
ntp
Dunno if anyone saw any of the prezos from OWASP AppSec EU 2008 - Belgium AppSecEU08_Dynamic_Taint_Propagation_OWASP.ppt OWASP-AppSecEU08-Petukhov.pdf OWASP-AppSecEU08-Madou.pdf or heard/saw/downloaded Alexander Sotirov's talk at REcon 2008 on black-box parser reversing for XSS (unrelated, but also amazing) ? In any case, I find white-box dynamic analysis very interesting, especially w
Forum: OMG Ponies
6 years ago
ntp
Cagekicker Wrote: ------------------------------------------------------- > For instance...in Phoenix, Arizona, you can't walk > through a hotel lobby with spurs on. How often > does that happen? This is a law that obviously > dates back to days of old. If you are in PhxAz then we should hang... And welcome...
Forum: Intro
6 years ago
ntp
Matt Presson Wrote: ------------------------------------------------------- > Aspect Security offers good training classes. HP / SPI Dynamics, McAfee / Foundstone, SecurityPS... Yeah, I'd probably pick Aspect out of that bunch. To be honest, the Microsoft ASP.NET security for C# class is really, really good even though it's outdated. SkillBridgeTraining is certified by MITRE in th
Forum: OMG Ponies
6 years ago
ntp
rsnake Wrote: ------------------------------------------------------- > There are a whole bunch of IP2Geo websites out > there that sell this information. I used to have > one lying around somewhere, but I can't seem to > locate it at the moment. The original, and still master is Quova. Also see http://en.wikipedia.org/wiki/Geobytes
Forum: Networking
6 years ago
ntp
Cagekicker Wrote: ------------------------------------------------------- > Let's say I wanted to set up a Wireless MAN for a > law enforcement agency... > What ideas would ya'll have for a network that > would have constantly moving clients (patrol > cars)? You probably wouldn't use WiFi or WiMax for this purpose. There is a secure protocol just for this sort of use cal
Forum: Wireless Security
6 years ago
ntp
my guess is that nEUrOO will say that he prefers Fortify SCA 5, then SWAAT, PHP-SAT, Pixy, et al.. personally, i like PSA3 best (and also PhpSecAudit and PFF) what's good about that is that no two testers think alike. what is bad about that is that you will probably have to try all the tools yourself note that while doing so, you might also want to check out RATS and Inspekt (which also
Forum: Projects
Pages: 1234Next
Current Page: 1 of 4