NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > WWW-Mobile-Code> 2001-q4

362 messages sorted by: [ author ] [ date ] [ thread ]

Starting: Mon Oct 01 2001 - 10:14:17 CDT
Ending: Sun Dec 30 2001 - 20:55:25 CST

(OWASP)App Sec Link
- dwgowasp.org (Wed Dec 05 2001 - 15:42:27 CST)
(OWASP)OWASP-IV-CV-1 and OWASP-IV-CSS-1
- Dennis Groves (Wed Nov 28 2001 - 12:23:11 CST)
(OWASP-I-CSC-1) - Client-Side Comments
- Mark Curphey (Thu Nov 01 2001 - 20:05:20 CST)
(OWASP-I-DBC-1) - Debug Commands
- Mark Curphey (Thu Nov 01 2001 - 20:06:11 CST)
(OWASP-I-DC-1) Debug Commands
- Mark Curphey (Thu Nov 01 2001 - 16:08:16 CST)
(OWASP-I-EC-1) - Error Codes
- Mark Curphey (Mon Oct 29 2001 - 01:42:53 CST)
(OWASP-I-FAE-1) - File & Application Enumeration
- Mark Curphey (Mon Oct 29 2001 - 01:42:43 CST)
(OWASP-IV-CSS-1) Cross Site Scripting
- Mark Curphey (Mon Oct 29 2001 - 01:42:31 CST)
(OWASP-IV-CV-1) - Client-Side Validation
- Sverre H. Huseby (Mon Oct 29 2001 - 12:52:20 CST)
- Mark Curphey (Mon Oct 29 2001 - 01:42:37 CST)
(OWASP-IV-CV-1) - Client-Side Validation - description
- dzzieyahoo.com (Mon Oct 29 2001 - 14:08:21 CST)
(OWASP-IV-DOSCI-1) Direct Operating System Command Injection
- Mark Curphey (Mon Oct 29 2001 - 01:42:23 CST)
(OWASP-IV-DSQLI-1) Direct SQL Injection
- Mark Curphey (Mon Oct 29 2001 - 01:42:13 CST)
(OWASP-IV-MC-1) - Meta Characters
- Mark Curphey (Mon Oct 29 2001 - 01:42:04 CST)
(OWASP-IV-NC-1) - Null Characters
- Mark Curphey (Mon Oct 29 2001 - 01:41:56 CST)
(OWASP-IV-PT-1) - Path Traversal
- rudi carell (Mon Oct 29 2001 - 19:17:20 CST)
- Sverre H. Huseby (Mon Oct 29 2001 - 12:29:07 CST)
- Mark Curphey (Mon Oct 29 2001 - 01:41:43 CST)
(OWASP-IV-URLE-1) - URL Encoding
- Sverre H. Huseby (Tue Oct 30 2001 - 15:53:40 CST)
- SecurityForums (Tue Oct 30 2001 - 02:54:52 CST)
- Sverre H. Huseby (Mon Oct 29 2001 - 13:23:21 CST)
- Mark Curphey (Mon Oct 29 2001 - 01:40:43 CST)
(OWASP-mc-da-1) - Default Accounts
- Ogle Ron (Rennes) (Sat Nov 03 2001 - 13:16:50 CST)
- Mark Curphey (Thu Nov 01 2001 - 20:23:32 CST)
(OWASP-MC-VP-1) - Vendor Patches
- Wall, Kevin (Tue Nov 06 2001 - 12:36:54 CST)
- Ogle Ron (Rennes) (Sat Nov 03 2001 - 12:24:37 CST)
- Mark Curphey (Thu Nov 01 2001 - 15:18:07 CST)
- Mark Curphey (Thu Nov 01 2001 - 20:24:35 CST)
(OWASP-PM-COOKIES-1) - Parameter Manipulation Cookies
- Mark Curphey (Thu Nov 08 2001 - 23:22:18 CST)
(OWASP-PM-FF-1) - Form Fields
- Sverre H. Huseby (Mon Oct 29 2001 - 13:51:54 CST)
- Mark Curphey (Mon Oct 29 2001 - 09:40:25 CST)
- dwgowasp.org (Mon Oct 29 2001 - 09:06:40 CST)
- Ogle Ron (Rennes) (Mon Oct 29 2001 - 05:16:05 CST)
- Mark Curphey (Mon Oct 29 2001 - 01:40:56 CST)
(OWASP-PM-URL-1) - URL Manipulation
- Sverre H. Huseby (Mon Oct 29 2001 - 11:02:51 CST)
- Mark Curphey (Mon Oct 29 2001 - 01:41:34 CST)
(OWASP-PV-BC-1) - Browser Cache
- Mark Curphey (Wed Nov 07 2001 - 21:44:46 CST)
(OWASP-PV-BC-1) 0 Privacy Violations Browser Cachce
- Sverre H. Huseby (Thu Nov 08 2001 - 14:21:54 CST)
- Mark Curphey (Wed Nov 07 2001 - 13:58:03 CST)
(OWASP-PV-BH-1) - Browser History
- Mark Curphey (Wed Nov 07 2001 - 21:42:31 CST)
- Mark Curphey (Thu Nov 08 2001 - 14:04:47 CST)
(OWASP-SM-PS-1) - Page Sequencing
- Mark Curphey (Fri Nov 02 2001 - 12:01:57 CST)
- NTranteraol.com (Fri Nov 02 2001 - 11:33:12 CST)
- vertigo (Fri Nov 02 2001 - 09:57:20 CST)
- Mark Curphey (Fri Nov 02 2001 - 09:24:13 CST)
- dwgowasp.org (Fri Nov 02 2001 - 00:44:39 CST)
- vertigo (Fri Nov 02 2001 - 00:23:56 CST)
- Jeremiah Grossman (Fri Nov 02 2001 - 00:09:19 CST)
- Mark Curphey (Thu Nov 01 2001 - 23:01:24 CST)
- dwgowasp.org (Thu Nov 01 2001 - 21:31:23 CST)
- Izhar Bar-Gad (Thu Nov 01 2001 - 19:58:30 CST)
- Mark Curphey (Mon Oct 29 2001 - 01:41:23 CST)
(OWASP-SM-SH-1) - Session Hi-Jacking
- Dennis Groves (Mon Oct 29 2001 - 18:51:24 CST)
- Jeremiah Grossman (Mon Oct 29 2001 - 17:24:54 CST)
- Kurt Seifried (Mon Oct 29 2001 - 15:49:19 CST)
- Bill Pennington (Mon Oct 29 2001 - 15:51:29 CST)
- Sverre H. Huseby (Mon Oct 29 2001 - 14:06:37 CST)
- Bill Pennington (Mon Oct 29 2001 - 09:34:22 CST)
- dwgowasp.org (Mon Oct 29 2001 - 09:06:24 CST)
- dwgowasp.org (Mon Oct 29 2001 - 02:45:48 CST)
- Erwin Geirnaert (Mon Oct 29 2001 - 02:52:36 CST)
- Erwin Geirnaert (Mon Oct 29 2001 - 02:25:22 CST)
- Mark Curphey (Mon Oct 29 2001 - 01:41:11 CST)
(OWASP-SM-SR-1) Session Replay
- Kurt Seifried (Fri Nov 09 2001 - 02:08:24 CST)
- Mark Curphey (Thu Nov 08 2001 - 23:22:22 CST)
[OWASP]-Write-Ups (Enlisting Volunteers)
- Jeremiah Grossman (Tue Oct 02 2001 - 17:53:28 CDT)
a cookie question
- dhurstspidynamics.com (Wed Nov 21 2001 - 00:56:42 CST)
- Mohammed Al-Raisi (Tue Nov 20 2001 - 17:19:53 CST)
A little help on a 'warezdoodz' hack
- Kim-Ee Yeoh (Tue Dec 04 2001 - 16:18:46 CST)
- Robert Fleck (Tue Dec 04 2001 - 15:28:43 CST)
- Brass, Phil (ISS Atlanta) (Tue Dec 04 2001 - 15:55:35 CST)
- Jeff Knox (Tue Dec 04 2001 - 15:40:05 CST)
- Brass, Phil (ISS Atlanta) (Tue Dec 04 2001 - 15:58:11 CST)
- John Galt (Tue Dec 04 2001 - 15:00:21 CST)
- Marty Block (Tue Dec 04 2001 - 11:39:49 CST)
Active-X, plug-ins etc
- Ogle Ron (Rennes) (Sat Oct 27 2001 - 17:01:58 CDT)
- Razvan Peteanu (Wed Oct 24 2001 - 12:28:29 CDT)
- ckrib.de (Wed Oct 24 2001 - 10:57:55 CDT)
- Ernesto Funes Rodriguez de LLano (Wed Oct 24 2001 - 09:54:34 CDT)
- ednologin.org (Wed Oct 24 2001 - 09:55:45 CDT)
- Mark Curphey (Wed Oct 24 2001 - 09:23:03 CDT)
Announcement : The Open Web Application Security Project
- Mark Curphey (Mon Nov 26 2001 - 01:45:51 CST)
Antwort: Active-X, plug-ins etc
- ckrib.de (Wed Oct 24 2001 - 10:54:22 CDT)
Antwort: Apache's REMOTE_USER env var
- Ted Behling (Sat Nov 10 2001 - 01:08:03 CST)
- ckrib.de (Fri Nov 09 2001 - 04:18:54 CST)
AOL, Yahoo, MSN to label sites' content
- Mark Curphey (Tue Oct 23 2001 - 17:06:59 CDT)
Apache's REMOTE_USER env var
- RSnake (Sun Nov 11 2001 - 19:26:57 CST)
- Justin Case (Fri Nov 09 2001 - 13:12:02 CST)
- Ted Behling (Thu Nov 08 2001 - 14:30:00 CST)
App Sec Link
- Razvan Peteanu (Wed Dec 05 2001 - 18:06:04 CST)
- Mark Curphey (Wed Dec 05 2001 - 11:50:06 CST)
Approved
- Mark Curphey (Tue Oct 02 2001 - 09:31:42 CDT)
Attack Categories [Just about Done]
- Jeremiah Grossman (Mon Oct 01 2001 - 12:12:35 CDT)
- Jeremiah Grossman (Mon Oct 01 2001 - 12:09:16 CDT)
Attack Components
- Andrew van der Stock (Thu Nov 29 2001 - 16:40:08 CST)
- Mark Curphey (Thu Nov 29 2001 - 09:14:43 CST)
- Matthew Franz (Thu Nov 29 2001 - 02:48:26 CST)
- Mark Curphey (Thu Nov 29 2001 - 01:47:08 CST)
- dwgowasp.org (Wed Nov 28 2001 - 01:38:58 CST)
Attack Components 20012811-1150
- Steven M. Christey (Sun Dec 02 2001 - 16:35:45 CST)
- Dennis Groves (Wed Nov 28 2001 - 12:53:49 CST)
Attack forms missing, and minor comments for existing drafts
- Andrew van der Stock (Thu Nov 29 2001 - 00:37:52 CST)
Best Practices for Secure Development, v4
- Razvan Peteanu (Wed Oct 10 2001 - 00:05:52 CDT)
Cannicalization representation is sues
- Everhart, Glenn (FUSA) (Tue Dec 11 2001 - 11:16:25 CST)
Canonicalization representation is sues
- Everhart, Glenn (FUSA) (Wed Dec 12 2001 - 10:51:49 CST)
- Everhart, Glenn (FUSA) (Wed Dec 12 2001 - 08:01:18 CST)
Canonicalization representation is sues)
- Paul Cardon (Tue Dec 11 2001 - 22:36:56 CST)
- Chalmers, Matthew (FUSA) (Fri Dec 07 2001 - 07:27:15 CST)
Canonicalization representation issues
- Wall, Kevin (Mon Dec 10 2001 - 12:55:14 CST)
- dendleridefense.com (Fri Dec 07 2001 - 09:05:38 CST)
- Michel Arboi (Fri Dec 07 2001 - 05:19:26 CST)
- Michael Howard (Thu Dec 06 2001 - 21:36:19 CST)
- Steven M. Christey (Thu Dec 06 2001 - 12:22:01 CST)
- Sverre H. Huseby (Thu Dec 06 2001 - 03:53:47 CST)
- Glenn and Mary Everhart (Wed Dec 05 2001 - 18:51:52 CST)
- Michael Howard (Wed Dec 05 2001 - 13:42:47 CST)
- David Wong (Wed Dec 05 2001 - 09:36:43 CST)
- Jeremiah Grossman (Tue Dec 04 2001 - 02:52:55 CST)
- Michael Howard (Tue Dec 04 2001 - 17:44:45 CST)
- Dennis Groves (Tue Dec 04 2001 - 16:29:51 CST)
- Mark Curphey (Tue Dec 04 2001 - 14:51:29 CST)
- David Wong (Tue Dec 04 2001 - 10:22:34 CST)
Cgisecurity.com Advisory #6: thttpd and mini_http Permission bypass vuln
- zeno (Tue Nov 13 2001 - 10:25:39 CST)
Cgisecurity.com Paper #3: Fingerprinting Port 80 Attacks: A look into web server, and web application attack signatures
- zeno (Mon Nov 05 2001 - 09:05:29 CST)
- zeno (Mon Nov 05 2001 - 06:36:07 CST)
Classification of Vulnerabilities - Seeking Group Approval -
- Steven M. Christey (Wed Oct 03 2001 - 13:38:16 CDT)
- bugtraq (Tue Oct 02 2001 - 05:34:41 CDT)
- Baka (Tue Oct 02 2001 - 05:20:29 CDT)
- William Hau (Tue Oct 02 2001 - 02:47:34 CDT)
- rudi carell (Tue Oct 02 2001 - 07:05:15 CDT)
- Jeremiah Grossman (Tue Oct 02 2001 - 01:21:49 CDT)
- Mark Curphey (Tue Oct 02 2001 - 01:08:31 CDT)
- Dennis Groves (Tue Oct 02 2001 - 00:52:07 CDT)
CodeRed/Nimda and other buffer overflow expoits and web server athentication
- Tom Gallagher (Mon Oct 01 2001 - 15:17:38 CDT)
Comments on OWASP-IV-DT-1 (Directory Traversal)
- Steven M. Christey (Mon Nov 05 2001 - 17:58:41 CST)
comments re vendor patching
- Kurt Seifried (Thu Nov 01 2001 - 22:56:13 CST)
Controlling MSIE sessions from Outlook (related to Client Side Trojans)
- Sverre H. Huseby (Mon Nov 05 2001 - 11:47:35 CST)
Cookie exploitation
- zeno (Thu Nov 08 2001 - 05:26:10 CST)
Crashing nokia phones
- Ofir Arkin (Sun Dec 30 2001 - 20:12:14 CST)
- bacano (Mon Dec 03 2001 - 07:18:33 CST)
- Philip Wagenaar (Sun Dec 02 2001 - 02:22:25 CST)
Cross Site Scipting Challenge...no prizes
- Brett Moore (Mon Dec 10 2001 - 15:35:11 CST)
- zeno (Mon Dec 10 2001 - 12:11:49 CST)
- Jeremiah Grossman (Mon Dec 10 2001 - 12:36:56 CST)
- Sverre H. Huseby (Mon Dec 10 2001 - 12:37:33 CST)
- Marc Slemko (Mon Dec 10 2001 - 12:23:05 CST)
- John Percival (Mon Dec 10 2001 - 12:25:03 CST)
- Liam Quinn (Mon Dec 10 2001 - 12:30:57 CST)
- bob (Mon Dec 10 2001 - 12:03:08 CST)
Cross Site Scripting with No User Intervention
- bacano (Tue Oct 23 2001 - 15:45:01 CDT)
- Sverre H. Huseby (Tue Oct 23 2001 - 13:58:27 CDT)
- Jeremiah Grossman (Tue Oct 23 2001 - 14:01:16 CDT)
- Sverre H. Huseby (Tue Oct 23 2001 - 14:06:00 CDT)
- Tim Hollebeek (Tue Oct 23 2001 - 13:58:51 CDT)
- Mark Curphey (Tue Oct 23 2001 - 12:14:10 CDT)
- Tony Welsh (Tue Oct 23 2001 - 12:59:25 CDT)
- Mortensen Jason-P28981 (Tue Oct 23 2001 - 10:12:49 CDT)
- Richard M. Smith (Tue Oct 23 2001 - 11:18:07 CDT)
- Jeremiah Grossman (Tue Oct 23 2001 - 11:17:18 CDT)
- rudi carell (Tue Oct 23 2001 - 15:27:04 CDT)
- Mark Curphey (Tue Oct 23 2001 - 09:30:32 CDT)
CSS URI sanitizing
- Nelson Sampaio Araujo Junior (Wed Dec 12 2001 - 05:08:18 CST)
- Andrew van der Stock (Tue Dec 11 2001 - 18:41:50 CST)
- Masaru Matsunami (Tue Dec 11 2001 - 10:50:24 CST)
Deep thought #2, I am serious with example
- dwgowasp.org (Wed Dec 12 2001 - 10:09:27 CST)
Deep Thoughts
- Dawes, Rogan (ZA - Johannesburg) (Wed Dec 19 2001 - 07:58:53 CST)
- infoelitesoft.org (Wed Dec 12 2001 - 19:03:27 CST)
- zeno (Wed Dec 12 2001 - 08:01:18 CST)
- dwgowasp.org (Tue Dec 11 2001 - 20:24:36 CST)
Designing Web Application Authentication Systems
- Erwin Geirnaert (Mon Nov 05 2001 - 15:23:54 CST)
- vertigo (Mon Nov 05 2001 - 13:33:02 CST)
- Ted Behling (Mon Nov 05 2001 - 04:32:18 CST)
- auto125268hushmail.com (Mon Nov 05 2001 - 02:16:46 CST)
Designing Web Application Authentication Systems (JAAS)
- Dawes, Rogan (ZA - Johannesburg) (Wed Nov 14 2001 - 06:52:23 CST)
- Tony Welsh (Tue Nov 13 2001 - 14:51:08 CST)
- Wall, Kevin (Tue Nov 13 2001 - 11:30:08 CST)
- Mark Curphey (Tue Nov 13 2001 - 09:40:34 CST)
- Erwin Geirnaert (Tue Nov 13 2001 - 09:05:12 CST)
- vertigo (Tue Nov 13 2001 - 02:44:05 CST)
- vertigo (Fri Nov 09 2001 - 12:28:41 CST)
- Mark Curphey (Mon Nov 12 2001 - 23:40:46 CST)
Duplicate Messages and no moderation for a few days
- Mark Curphey (Thu Nov 08 2001 - 23:24:40 CST)
Firewall authenticating calling applications
- Ted Behling (Tue Oct 09 2001 - 14:00:44 CDT)
- Oscar Batyrbaev (Tue Oct 09 2001 - 00:36:48 CDT)
Fwd: Javascript in IE may spoof the whole screen
- Mark Curphey (Sun Oct 21 2001 - 21:13:55 CDT)
Glossary
- Kavanaugh Pat H Contr CSS/SCOI (Thu Oct 04 2001 - 12:32:04 CDT)
- Wall, Kevin (Thu Oct 04 2001 - 11:54:04 CDT)
- Jeremiah Grossman (Thu Oct 04 2001 - 10:59:35 CDT)
- Dennis Groves (Thu Oct 04 2001 - 02:14:48 CDT)
Happy X-Mas from WebAppSec and OWASP
- Mark Curphey (Sat Dec 22 2001 - 22:15:37 CST)
HTTPR
- Matthew S. Hamrick (Wed Oct 03 2001 - 01:46:28 CDT)
- Mark Curphey (Mon Oct 01 2001 - 23:13:13 CDT)
ICA based applications
- Ian C. Blenke (Tue Nov 27 2001 - 10:48:32 CST)
- Michael Conlen (Tue Nov 27 2001 - 01:52:56 CST)
ICONNECTHERE.COM UNENCRYPTED COOKIE VULNERABILITY
- Egemen Tas (Thu Nov 08 2001 - 06:12:28 CST)
IIS Authentication methods
- auto125268hushmail.com (Tue Oct 30 2001 - 22:28:11 CST)
- Kurt Seifried (Tue Oct 30 2001 - 19:21:45 CST)
- Michael Howard (Tue Oct 30 2001 - 18:54:46 CST)
- Mark Curphey (Tue Oct 30 2001 - 18:04:33 CST)
- Woodworth, Lora (Tue Oct 30 2001 - 18:12:51 CST)
- Patrick S. Harper (Tue Oct 30 2001 - 17:46:09 CST)
- Cabezon Aurélien (Tue Oct 30 2001 - 17:21:02 CST)
- Woodworth, Lora (Tue Oct 30 2001 - 17:12:49 CST)
iPlanet/Netscape vs. LanMan Authentication
- Bill Pennington (Mon Nov 26 2001 - 13:21:42 CST)
- amonotod (Mon Nov 26 2001 - 13:56:38 CST)
- amonotod (Mon Nov 26 2001 - 12:27:44 CST)
Microsoft Passport to Trouble
- Baron Samedi (Sat Nov 03 2001 - 20:09:00 CST)
Microsoft Security Bulletin MS01-055
- Mark Curphey (Fri Nov 09 2001 - 00:21:38 CST)
modeling attack trees with XML
- Mark Curphey (Thu Nov 15 2001 - 23:07:46 CST)
modelling attack trees with XML
- vertigo (Tue Nov 20 2001 - 22:12:07 CST)
- auto125268hushmail.com (Tue Nov 20 2001 - 14:12:09 CST)
- vertigo (Fri Nov 16 2001 - 15:37:09 CST)
- Bill Pennington (Fri Nov 16 2001 - 13:24:43 CST)
- Gerard Palma (Fri Nov 16 2001 - 04:20:32 CST)
- Razvan Peteanu (Thu Nov 15 2001 - 22:07:11 CST)
Mono
- Mark Curphey (Wed Nov 28 2001 - 01:51:31 CST)
MS Passport and Beyond!
- Jeremiah Grossman (Tue Oct 23 2001 - 12:18:32 CDT)
Need Help with Apache and cgiwrap / php-cgiwrap
- Christian Mengler (Sun Dec 02 2001 - 19:02:27 CST)
- Christian Mengler (Mon Nov 26 2001 - 06:21:44 CST)
New WebSleuth with CSS testing and help
- Mark Curphey (Mon Dec 10 2001 - 13:03:08 CST)
new wep app analysis tool - looking for ideas and testers
- dzzieyahoo.com (Sat Nov 24 2001 - 13:32:09 CST)
- dzzieyahoo.com (Sat Nov 24 2001 - 03:29:05 CST)
On Client Side Trojans
- Sverre H. Huseby (Mon Nov 05 2001 - 06:39:48 CST)
OWASP - Forced Browsing Write-up
- Mark Curphey (Thu Oct 11 2001 - 00:34:46 CDT)
OWASP - Revised Attack Components List
- Mark Curphey (Sun Dec 02 2001 - 21:00:29 CST)
OWASP - WebSleuth
- Johannes Verelst (Tue Nov 27 2001 - 06:24:41 CST)
- auto125268hushmail.com (Tue Nov 27 2001 - 02:18:13 CST)
- auto125268hushmail.com (Tue Nov 27 2001 - 02:09:04 CST)
- Mark Curphey (Mon Nov 26 2001 - 01:47:46 CST)
OWASP - WebSleuth - Cross Site Scripting
- Erwin Geirnaert (Tue Nov 27 2001 - 09:59:13 CST)
- dhurstspidynamics.com (Tue Nov 27 2001 - 08:33:43 CST)
- dzzieyahoo.com (Tue Nov 27 2001 - 05:56:10 CST)
- auto125268hushmail.com (Tue Nov 27 2001 - 02:15:59 CST)
OWASP Attack Components List
- Mark Curphey (Mon Nov 26 2001 - 01:49:25 CST)
OWASP Update
- Mark Curphey (Sun Nov 18 2001 - 19:47:38 CST)
- Mark Curphey (Mon Nov 05 2001 - 01:53:56 CST)
- Mark Curphey (Mon Oct 29 2001 - 15:36:27 CST)
- Sverre H. Huseby (Mon Oct 29 2001 - 14:09:18 CST)
- Mark Curphey (Mon Oct 29 2001 - 01:40:29 CST)
- Mark Curphey (Thu Oct 18 2001 - 22:38:22 CDT)
- Mark Curphey (Mon Oct 01 2001 - 16:49:35 CDT)
OWASP Update - www.owasp.org
- Mark Curphey (Sun Oct 07 2001 - 23:23:07 CDT)
OWASP Web Site - Call for Papers and Presentations
- Mark Curphey (Tue Oct 02 2001 - 21:37:32 CDT)
OWASP Webmaster Needed
- Mark Curphey (Wed Oct 31 2001 - 10:40:43 CST)
OWASP WebSleuth Alpha 1.1 - Now with Plug-ins !
- Mark Curphey (Sun Dec 02 2001 - 21:15:41 CST)
OWASP-IV-CSS-1
- researchcamisade.com (Fri Nov 09 2001 - 18:12:19 CST)
OWASP-IV-CV-1 and OWASP-IV-CSS-1
- Gøran F. Breivik (Wed Nov 28 2001 - 07:21:14 CST)
OWASP-IV-DSC-1 [Out for Peer Review]
- Jeremiah Grossman (Wed Oct 10 2001 - 12:58:53 CDT)
OWASP-MC-VP-1
- researchcamisade.com (Fri Nov 09 2001 - 18:10:58 CST)
OWASP-PM-HH-1 (HTTP Header Manipulation)
- Julian Melville (Wed Dec 05 2001 - 17:03:43 CST)
- David Wong (Wed Dec 05 2001 - 14:55:14 CST)
- Mark Curphey (Tue Nov 20 2001 - 15:59:59 CST)
- dhurstspidynamics.com (Tue Nov 20 2001 - 15:42:57 CST)
- auto125268hushmail.com (Tue Nov 20 2001 - 14:09:46 CST)
- Caleb Sima (Mon Nov 19 2001 - 22:51:40 CST)
- rudi carell (Mon Nov 19 2001 - 08:00:21 CST)
- Mark Curphey (Sun Nov 18 2001 - 19:34:12 CST)
OWASP-SM-SH-1
- researchcamisade.com (Fri Nov 09 2001 - 18:11:40 CST)
owasp.org Update
- Kevin Jeong (Mon Dec 17 2001 - 17:29:28 CST)
P3P. Poking holes
- Ted Behling (Mon Oct 29 2001 - 21:50:49 CST)
- Jeremiah Grossman (Tue Oct 23 2001 - 11:02:57 CDT)
- Jeremiah Grossman (Tue Oct 23 2001 - 11:01:43 CDT)
- Mark Curphey (Tue Oct 23 2001 - 09:17:41 CDT)
- rudi carell (Tue Oct 23 2001 - 07:47:51 CDT)
- Jeremiah Grossman (Tue Oct 23 2001 - 01:51:16 CDT)
- Mark Curphey (Mon Oct 22 2001 - 21:15:21 CDT)
- Jeremiah Grossman (Mon Oct 22 2001 - 15:36:29 CDT)
polling the groups expertise
- dzzieyahoo.com (Tue Dec 04 2001 - 03:12:50 CST)
possible usefull references (?)
- bacano (Mon Oct 01 2001 - 10:07:05 CDT)
Preventing Buffer Overflows in Web Applications
- Tim Hollebeek (Wed Oct 24 2001 - 18:55:52 CDT)
- auto125268hushmail.com (Wed Oct 24 2001 - 15:29:41 CDT)
Preventing Privacy Problems
- Baka (Wed Oct 31 2001 - 04:08:11 CST)
- auto125268hushmail.com (Tue Oct 30 2001 - 16:17:22 CST)
RADIX1109200101
- researchcamisade.com (Fri Nov 09 2001 - 18:20:18 CST)
Security holes in Hotmail, Yahoo, and other webmails
- FozZy (Sun Dec 23 2001 - 22:08:50 CST)
Session Hijacking Thoughts
- Brass, Phil (ISS Atlanta) (Tue Dec 11 2001 - 20:45:37 CST)
- Chalmers, Matthew (FUSA) (Tue Dec 11 2001 - 11:04:50 CST)
- Ogle Ron (Rennes) (Tue Dec 11 2001 - 02:27:21 CST)
- dendleridefense.com (Mon Dec 10 2001 - 18:24:37 CST)
- Jeremiah Grossman (Mon Dec 10 2001 - 16:31:59 CST)
- Andrew van der Stock (Mon Dec 10 2001 - 16:09:37 CST)
- Kurt Seifried (Mon Dec 10 2001 - 16:07:09 CST)
- Jeremiah Grossman (Mon Dec 10 2001 - 12:51:41 CST)
- Jeremiah Grossman (Mon Dec 10 2001 - 12:54:35 CST)
- John Percival (Mon Dec 10 2001 - 12:13:06 CST)
- moksha faced (Mon Dec 10 2001 - 11:33:17 CST)
- Jeremiah Grossman (Mon Dec 10 2001 - 10:47:36 CST)
- Jeremiah Grossman (Mon Dec 10 2001 - 10:39:13 CST)
- Jeremiah Grossman (Mon Dec 10 2001 - 10:49:40 CST)
- Jeremiah Grossman (Mon Dec 10 2001 - 10:36:57 CST)
- Filip Van Laenen (Mon Dec 10 2001 - 09:34:48 CST)
- John Percival (Mon Dec 10 2001 - 08:14:33 CST)
- Ogle Ron (Rennes) (Mon Dec 10 2001 - 03:50:30 CST)
- Peter Conrad (Mon Dec 10 2001 - 02:50:37 CST)
- Sverre H. Huseby (Mon Dec 10 2001 - 01:59:13 CST)
- Jeremiah Grossman (Mon Dec 10 2001 - 00:52:52 CST)
- Bruce.Morrisernstyoung.com.au (Mon Dec 10 2001 - 00:10:41 CST)
- Andrew van der Stock (Sun Dec 09 2001 - 23:19:55 CST)
- Mark Curphey (Sun Dec 09 2001 - 23:08:10 CST)
- Andrew van der Stock (Sun Dec 09 2001 - 22:56:08 CST)
- Jeremiah Grossman (Sun Dec 09 2001 - 22:52:45 CST)
- Dennis Groves (Sun Dec 09 2001 - 22:26:11 CST)
- Andrew van der Stock (Sun Dec 09 2001 - 20:32:38 CST)
- Bill Pennington (Wed Dec 05 2001 - 19:46:13 CST)
- dendleridefense.com (Tue Dec 04 2001 - 23:19:32 CST)
Slash, Jetspeed...
- Gary Flynn (Wed Oct 24 2001 - 09:40:12 CDT)
- Mark Curphey (Wed Oct 24 2001 - 09:25:36 CDT)
- Lonard BUTTAY (Wed Oct 24 2001 - 02:33:55 CDT)
- Jeremiah Grossman (Tue Oct 23 2001 - 15:16:40 CDT)
- Tim Hollebeek (Tue Oct 23 2001 - 14:26:52 CDT)
- Jeremiah Grossman (Tue Oct 23 2001 - 14:03:08 CDT)
- Jeremiah Grossman (Tue Oct 23 2001 - 13:57:44 CDT)
- Mark Curphey (Tue Oct 23 2001 - 13:58:41 CDT)
- Jeremiah Grossman (Tue Oct 23 2001 - 13:55:53 CDT)
sloppy coding (ie)
- Andrew van der Stock (Sun Dec 09 2001 - 21:38:01 CST)
- thijs (Sat Dec 08 2001 - 17:48:03 CST)
Some Security Sources
- Sverre H. Huseby (Wed Nov 14 2001 - 15:27:59 CST)
SPAMMERS DELIGHT: as feeble as feeble can be
- zeno (Wed Dec 12 2001 - 11:42:51 CST)
- peter.allenmoon-light.co.uk (Wed Dec 12 2001 - 04:31:32 CST)
- Jesse Brown (Tue Dec 11 2001 - 12:42:07 CST)
- Bill Pennington (Tue Dec 11 2001 - 10:51:32 CST)
- skip (Tue Dec 11 2001 - 14:26:12 CST)
- H D Moore (Tue Dec 11 2001 - 00:28:27 CST)
- Jay D. Dyson (Mon Dec 10 2001 - 22:44:10 CST)
- http-equivexcite.com (Mon Dec 10 2001 - 17:40:25 CST)
SQL INJECTION - ORACLE
- Jacques Bourdeau (Mon Dec 10 2001 - 13:10:40 CST)
- Michael Haunzwickl (Mon Dec 10 2001 - 12:25:06 CST)
- foo bar (Mon Dec 10 2001 - 10:06:05 CST)
SSL Question
- RAGHAVENDRAN H. (SSG) - CTD, Chennai. (Sun Nov 11 2001 - 22:41:44 CST)
- vertigo (Fri Nov 09 2001 - 12:40:10 CST)
- Harmen van der Wal (Sun Nov 11 2001 - 15:45:04 CST)
- vertigo (Fri Nov 09 2001 - 10:08:44 CST)
- David Pick (Fri Nov 09 2001 - 09:16:21 CST)
- Brass, Phil (ISS Atlanta) (Fri Nov 09 2001 - 09:15:53 CST)
- Erwin Geirnaert (Fri Nov 09 2001 - 09:06:01 CST)
- RAGHAVENDRAN H. (SSG) - CTD, Chennai. (Thu Nov 08 2001 - 23:36:37 CST)
telling crypto type [off topic]
- Razvan Peteanu (Thu Oct 18 2001 - 21:33:38 CDT)
- Jeremiah Grossman (Thu Oct 18 2001 - 21:27:48 CDT)
- Mark Curphey (Thu Oct 18 2001 - 21:15:20 CDT)
- tox (Thu Oct 18 2001 - 20:41:26 CDT)
- Kurt Seifried (Thu Oct 18 2001 - 20:40:31 CDT)
- Jeremiah Grossman (Thu Oct 18 2001 - 20:06:13 CDT)
The Dangers of Email Archives
- bugtraq (Thu Oct 25 2001 - 04:10:20 CDT)
Thought you would find these stats interesting ....
- Andrew Jenks (Sun Oct 28 2001 - 12:31:30 CST)
- Luke LeBoeuf (Sun Oct 28 2001 - 10:02:23 CST)
- bacano (Sun Oct 28 2001 - 05:55:44 CST)
- bacano (Sun Oct 28 2001 - 05:52:34 CST)
- Fernando Montenegro (Fri Oct 26 2001 - 16:22:55 CDT)
- Barry Suskind (Fri Oct 26 2001 - 12:15:01 CDT)
- Mark Curphey (Tue Oct 23 2001 - 13:22:19 CDT)
Tom Wu's Secure Remote Password in IE6.0 XP?
- Mark Curphey (Thu Oct 25 2001 - 09:57:02 CDT)
- Dawes, Rogan (ZA - Johannesburg) (Thu Oct 25 2001 - 10:08:12 CDT)
- Dawes, Rogan (ZA - Johannesburg) (Thu Oct 25 2001 - 09:25:38 CDT)
Viewing Source w/o Visiting [WAS]: Cross Site Scripting with No User Intervention
- Jeremiah Grossman (Tue Oct 23 2001 - 13:27:59 CDT)
Wanted: Instructor for Ecommerce Application Security course
- Michael Endrizzi (Thu Oct 04 2001 - 18:32:06 CDT)
Web Services Articles
- Mark Curphey (Mon Oct 01 2001 - 23:09:05 CDT)
WebSleuth SQL Injection Plugin by Chip Andrews
- Mark Curphey (Thu Dec 27 2001 - 02:02:27 CST)
WhiteHat Security: Exchange 5.5 OWA CSS Vulnerability
- WhiteHat Labs (Sun Dec 09 2001 - 13:13:42 CST)
XML Modeling
- Brass, Phil (ISS Atlanta) (Wed Dec 19 2001 - 15:37:46 CST)
- Mark Curphey (Wed Dec 19 2001 - 14:51:34 CST)
XML Modelling of Attack Components
- auto125268hushmail.com (Wed Nov 28 2001 - 00:23:21 CST)
Zope Backdoor ....
- Mark Curphey (Thu Nov 01 2001 - 19:15:15 CST)

Last message date: Sun Dec 30 2001 - 20:55:25 CST
Archived on: Sun Dec 30 2001 - 20:55:26 CST

362 messages sorted by: [ author ] [ date ] [ thread ]