Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
This group should mostly be dealing with how web applications enable networking security issues that are otherwise not there. Everything is being tunneled over port 80 now so what does that enable and how do we fix it? 
Go to: Forum ListMessage ListNew TopicLog In

Current Page: 1 of 1
Results 1 - 4 of 4
5 years ago
goodwinster
1. Re: DNS Spoofing/Pinning
This thread isn't getting any younger, but... Following the news the other day that IE doesn't actively implement DNS-Pinning; it seems Firefox (2.0.0.4) DNS pinning is either non-existent or somewhat strange too. Take a look and let me know what you think http://getahead.org/blog/mark . Goodwinster
Forum: Networking
6 years ago
goodwinster
2. Re: CSRF and JavaScript 2
Because the *read* data that's fetched from a forged request, at the moment you have to have it returned as JSON or valid javascript. If you can force the interpreter to see HTML / XML as valid JS, you can read anything.
Forum: CSRF and Session Info
6 years ago
goodwinster
3. CSRF and JavaScript 2
Has anyone seen Joe Walker's blog post on CSRF possibilities in JavaScript 2 yet? If so; what do you think?
Forum: CSRF and Session Info
6 years ago
goodwinster
4. Re: Introductions
Hi; I'm goodwinster. I'm a security geek based in Leicestershire, UK. You might have seen some of my work on Joe Walker's blog. I've been hanging around for a few months now; thought I'd join in the fun.
Forum: Intro
Current Page: 1 of 1
Go to: Forum ListMessage ListNew TopicLog In


Falling Rock Networks

sla.ckers.org RSS feed
Board haX0r3d together by ha.ckers.org, forshizzle. *