NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > WWW-Mobile-Code> 2002-q3

413 messages sorted by: [ author ] [ date ] [ thread ]

Starting: Mon Jul 01 2002 - 22:31:58 CDT
Ending: Mon Sep 30 2002 - 09:26:58 CDT

(no subject)
- Security Architect (Sun Sep 29 2002 - 16:38:00 CDT)
=?iso-8859-15?Q?=0D Warning : Security architecture can save your site !?=
- Andrew Jaquith (Tue Sep 24 2002 - 09:43:59 CDT)
- Security Architect (Mon Sep 23 2002 - 22:57:39 CDT)
A new approach toward teaching secure coding? (WWW or otherwi se)
- Nedunuri,Srinivas (Mon Sep 09 2002 - 14:43:58 CDT)
- Filip Van Laenen (Mon Sep 09 2002 - 02:41:24 CDT)
A new approach toward teaching secure coding? (WWW or otherwise)
- Sverre H. Huseby (Mon Sep 09 2002 - 13:54:14 CDT)
- Alex Russell (Mon Sep 09 2002 - 10:32:51 CDT)
- HarryM (Sat Sep 07 2002 - 13:03:54 CDT)
- Alonso Robles (Sat Sep 07 2002 - 08:32:14 CDT)
- Alex Lambert (Fri Sep 06 2002 - 23:33:21 CDT)
- Jason Coombs (Fri Aug 30 2002 - 18:11:06 CDT)
- Alex Lambert (Wed Aug 28 2002 - 20:03:08 CDT)
- Sverre H. Huseby (Tue Aug 27 2002 - 05:55:58 CDT)
- Mark Curphey (Tue Aug 27 2002 - 04:38:35 CDT)
- Alex Lambert (Mon Aug 26 2002 - 19:29:12 CDT)
Access Management Products
- Cyrill Osterwalder (Thu Aug 29 2002 - 02:34:11 CDT)
- Alberto Cozer (Wed Aug 28 2002 - 16:27:11 CDT)
- Frank DeGilio (Wed Aug 28 2002 - 15:09:08 CDT)
- James Dawson (Wed Aug 28 2002 - 10:39:14 CDT)
Apache Security Training - SANS Institute
- Ryan Barnett (Thu Aug 01 2002 - 10:52:41 CDT)
asymmetric crypto for storage of cc#s, and separation of resp onsibilities
- Filip Van Laenen (Fri Aug 23 2002 - 02:12:26 CDT)
asymmetric crypto for storage of cc#s, and separation of responsibilities
- Andrew van der Stock (Thu Aug 22 2002 - 20:43:59 CDT)
- Alex Russell (Thu Aug 22 2002 - 18:49:00 CDT)
- Alex Russell (Thu Aug 22 2002 - 18:25:11 CDT)
- Alex Russell (Thu Aug 22 2002 - 18:00:56 CDT)
- Ben Mord (Thu Aug 22 2002 - 16:47:36 CDT)
- ONEILL David J (Thu Aug 22 2002 - 16:28:30 CDT)
- Ben Mord (Thu Aug 22 2002 - 10:50:38 CDT)
- Alex Russell (Thu Aug 22 2002 - 11:32:09 CDT)
AW: Web Server Log Files - Security Events Analysis
- crazytrain.com (Sun Jul 28 2002 - 13:08:02 CDT)
- Carlos Heller (Sat Jul 27 2002 - 02:17:10 CDT)
BASIC authentication vs. sessions ID [was: Warning: PHP 4.2 may put session ids in URLs]
- Keith Smith (Tue Aug 27 2002 - 10:48:36 CDT)
Best Practices for passing data via HTTP
- Gabriel Lawrence (Thu Jul 11 2002 - 18:01:59 CDT)
- Kalyan Varma (Thu Jul 11 2002 - 12:42:08 CDT)
- Matt Sergeant (Thu Jul 11 2002 - 04:05:53 CDT)
- Kevin Spett (Wed Jul 10 2002 - 16:57:46 CDT)
- Jason Childers (Wed Jul 10 2002 - 17:34:42 CDT)
- Daniel Hedrick (Wed Jul 10 2002 - 17:18:24 CDT)
- Mark Curphey (Wed Jul 10 2002 - 17:42:44 CDT)
- Jim Markley (Wed Jul 10 2002 - 16:22:36 CDT)
- Blake Frantz (Wed Jul 10 2002 - 16:09:16 CDT)
- Gregory Steuck (Wed Jul 10 2002 - 16:11:47 CDT)
- strange_at_nsk.yi.org (Wed Jul 10 2002 - 16:16:24 CDT)
- Kevin Spett (Wed Jul 10 2002 - 15:39:46 CDT)
- Paul Matheu (Wed Jul 10 2002 - 16:00:19 CDT)
- Venkat, Sanjay (Wed Jul 10 2002 - 15:47:11 CDT)
- Kevin Spett (Wed Jul 10 2002 - 14:38:20 CDT)
- Anna Karuba (Wed Jul 10 2002 - 14:43:56 CDT)
- Kalyan Varma (Wed Jul 10 2002 - 14:53:34 CDT)
- Ben Mord (Wed Jul 10 2002 - 14:52:26 CDT)
- Gabriel Lawrence (Wed Jul 10 2002 - 14:37:24 CDT)
- Kalyan Varma (Wed Jul 10 2002 - 14:15:06 CDT)
- Mark Curphey (Wed Jul 10 2002 - 14:43:31 CDT)
- zeno (Wed Jul 10 2002 - 14:04:36 CDT)
- Bryan Ponnwitz (Wed Jul 10 2002 - 14:03:32 CDT)
- Steven Fling (Wed Jul 10 2002 - 13:36:05 CDT)
Book Review "Web hacking: attacks and defense"
- zeno (Sun Sep 29 2002 - 21:13:33 CDT)
Bounced mail ?
- Mark Curphey (Sun Sep 29 2002 - 16:34:08 CDT)
Client IP - from client or server?
- Steven J. Sobol (Mon Aug 12 2002 - 12:11:26 CDT)
- Bill Pennington (Mon Aug 12 2002 - 10:31:58 CDT)
- Nik Cubrilovic (Mon Aug 12 2002 - 09:24:53 CDT)
- Vitor Ventura (Mon Aug 12 2002 - 06:27:48 CDT)
- Kevin Spett (Thu Aug 08 2002 - 16:50:11 CDT)
- Panayiotis A. Thermos (Thu Aug 08 2002 - 16:38:40 CDT)
- Panayiotis A. Thermos (Thu Aug 08 2002 - 16:25:54 CDT)
- Mike Shaw (Thu Aug 08 2002 - 14:47:52 CDT)
- Kevin Spett (Thu Aug 08 2002 - 14:40:46 CDT)
- Panayiotis A. Thermos (Thu Aug 08 2002 - 13:13:13 CDT)
- Alex Russell (Thu Aug 08 2002 - 13:24:49 CDT)
- Kevin Spett (Thu Aug 08 2002 - 12:07:13 CDT)
- Panayiotis A. Thermos (Thu Aug 08 2002 - 09:33:40 CDT)
- Kevin Spett (Wed Aug 07 2002 - 18:45:12 CDT)
- by way of Alex Russell (Wed Aug 07 2002 - 17:34:25 CDT)
- Mike Shaw (Wed Aug 07 2002 - 16:30:37 CDT)
Coordinating SSL and session tracking layers to foil session hijacking
- Ben Mord (Mon Jul 29 2002 - 15:07:54 CDT)
- Sean Z. (Fri Jul 26 2002 - 20:01:43 CDT)
- Ben Mord (Fri Jul 26 2002 - 11:53:58 CDT)
- Jason Coombs (Thu Jul 25 2002 - 18:49:57 CDT)
- Peter Conrad (Fri Jul 26 2002 - 02:28:12 CDT)
- Jason (Thu Jul 25 2002 - 16:20:39 CDT)
- Kevin Spett (Thu Jul 25 2002 - 16:33:04 CDT)
- Gabriel Lawrence (Thu Jul 25 2002 - 15:50:35 CDT)
- MICHAEL GERMONY (Thu Jul 25 2002 - 15:37:20 CDT)
- Jason Coombs (Thu Jul 25 2002 - 15:30:54 CDT)
- Ben Mord (Thu Jul 25 2002 - 13:52:38 CDT)
Coordinating SSL and session tracking layers to foil sessionhijacking
- Bryan Ponnwitz (Fri Jul 26 2002 - 08:13:19 CDT)
- Ben Mord (Thu Jul 25 2002 - 16:00:40 CDT)
Coordinating SSL and session tracking layers to foilsessionhijacking
- Jason (Fri Jul 26 2002 - 12:08:30 CDT)
Could web browsers help prevent XSS?
- b0iler (Tue Sep 24 2002 - 11:37:05 CDT)
- Laurian Gridinoc (Mon Sep 23 2002 - 08:19:06 CDT)
- b0iler (Sun Sep 22 2002 - 01:09:12 CDT)
Credit Card Validation
- Tony Welsh (Fri Aug 16 2002 - 13:00:54 CDT)
- Alex Russell (Fri Aug 16 2002 - 12:42:06 CDT)
- Mars T (Fri Aug 16 2002 - 09:55:57 CDT)
Cross Site Scripting Vulnerabilities - XSS
- stephen (Tue Aug 06 2002 - 11:35:16 CDT)
- Dave Aitel (Tue Aug 06 2002 - 11:18:37 CDT)
- Bill Pennington (Tue Aug 06 2002 - 10:29:08 CDT)
Cross site sripting
- Panayiotis A. Thermos (Wed Jul 17 2002 - 14:39:42 CDT)
- Kevin Spett (Wed Jul 17 2002 - 13:58:31 CDT)
- Olaf Weyer (Wed Jul 17 2002 - 10:38:30 CDT)
Do Browsers (IE) really check CRLs correctly?
- Michael Howard (Tue Sep 17 2002 - 10:50:04 CDT)
- Raghavendran H. (SSG) - CTD, Chennai. (Sat Sep 14 2002 - 06:58:39 CDT)
- Michael Howard (Sat Sep 14 2002 - 10:43:12 CDT)
- Jean-Baptiste Marchand (Mon Sep 16 2002 - 09:25:36 CDT)
- Michael Howard (Fri Sep 13 2002 - 15:15:38 CDT)
- Wall, Kevin (Fri Sep 13 2002 - 12:35:07 CDT)
- Raghavendran H. (SSG) - CTD, Chennai. (Thu Sep 12 2002 - 23:59:06 CDT)
Easy End to XSS
- Bill Pennington (Wed Aug 14 2002 - 17:49:04 CDT)
- Sverre H. Huseby (Wed Aug 14 2002 - 12:01:26 CDT)
- Steven J. Sobol (Mon Aug 12 2002 - 13:46:57 CDT)
- Bill Pennington (Mon Aug 12 2002 - 13:12:38 CDT)
- Steven J. Sobol (Mon Aug 12 2002 - 12:06:46 CDT)
- Daniel Delaney (Mon Aug 12 2002 - 12:16:49 CDT)
- Ben Mord (Fri Aug 09 2002 - 15:06:25 CDT)
- Alex Russell (Thu Aug 08 2002 - 14:26:57 CDT)
- Bob Lee (Thu Aug 08 2002 - 13:53:44 CDT)
- Marc Slemko (Thu Aug 08 2002 - 13:47:11 CDT)
- Doug Sibley (Thu Aug 08 2002 - 12:20:18 CDT)
- Ben Mord (Thu Aug 08 2002 - 08:10:20 CDT)
- Bob Lee (Thu Aug 08 2002 - 00:40:40 CDT)
- Greg Steuck (Thu Aug 08 2002 - 00:15:08 CDT)
- Ben Mord (Wed Aug 07 2002 - 22:02:03 CDT)
- Bill Pennington (Wed Aug 07 2002 - 22:28:33 CDT)
- Alex Russell (Wed Aug 07 2002 - 18:11:48 CDT)
- Ben Mord (Wed Aug 07 2002 - 17:07:27 CDT)
- Alex Russell (Wed Aug 07 2002 - 16:45:46 CDT)
- Ben Mord (Wed Aug 07 2002 - 15:27:32 CDT)
- Andrew Jaquith (Wed Aug 07 2002 - 13:34:22 CDT)
- Bob Lee (Wed Aug 07 2002 - 14:07:57 CDT)
- Doug Sibley (Wed Aug 07 2002 - 11:17:40 CDT)
- Mark Curphey (Wed Aug 07 2002 - 11:12:30 CDT)
- Doug Sibley (Wed Aug 07 2002 - 10:31:18 CDT)
Encryption approach to secure web applications
- Jason (Thu Aug 29 2002 - 08:32:51 CDT)
- Jeff Williams _at_ Aspect (Wed Aug 28 2002 - 21:02:50 CDT)
- Alex Russell (Wed Aug 28 2002 - 21:41:39 CDT)
- Alex Russell (Wed Aug 28 2002 - 16:27:47 CDT)
- Jeff Williams _at_ Aspect (Wed Aug 28 2002 - 14:58:46 CDT)
- Alex Russell (Wed Aug 28 2002 - 12:10:29 CDT)
- Kevin Spett (Wed Aug 28 2002 - 09:54:29 CDT)
- Kevin Spett (Tue Aug 27 2002 - 17:52:33 CDT)
- Alex Russell (Tue Aug 27 2002 - 16:36:20 CDT)
- Jeff Williams _at_ Aspect (Tue Aug 27 2002 - 12:46:18 CDT)
- zeno (Sat Aug 24 2002 - 14:00:29 CDT)
- Allan Wind (Sat Aug 24 2002 - 11:32:42 CDT)
- Mario Torre (Sat Aug 24 2002 - 06:42:36 CDT)
Entrust vs. Verisign certs
- Steven J. Sobol (Mon Aug 12 2002 - 12:15:01 CDT)
- Nelson Sampaio Araujo Junior (Mon Aug 12 2002 - 12:35:11 CDT)
- Jason (Sat Aug 10 2002 - 22:35:16 CDT)
- Kurt Seifried (Sat Aug 10 2002 - 22:50:44 CDT)
- Jason (Sat Aug 10 2002 - 23:20:30 CDT)
- Jason (Sat Aug 10 2002 - 10:38:42 CDT)
- Kurt Seifried (Sat Aug 10 2002 - 16:37:20 CDT)
- Kurt Seifried (Sat Aug 10 2002 - 01:18:13 CDT)
- Jason (Fri Aug 09 2002 - 20:36:34 CDT)
- Mike Shaw (Fri Aug 09 2002 - 12:17:31 CDT)
- Alberto Cozer (Thu Aug 08 2002 - 20:06:29 CDT)
- Bruce.Morris_at_ernstyoung.com.au (Thu Aug 08 2002 - 18:06:26 CDT)
- Ajai Khattri (Thu Aug 08 2002 - 17:33:31 CDT)
- Lars Troen (Thu Aug 08 2002 - 14:11:03 CDT)
- by way of Alex Russell (Thu Aug 08 2002 - 14:03:32 CDT)
- Cushing, David (Thu Aug 08 2002 - 13:48:50 CDT)
- Woodworth, Lora (Thu Aug 08 2002 - 13:21:39 CDT)
ezmlm probe
- webappsec-help_at_securityfocus.com (Sat Aug 03 2002 - 11:53:59 CDT)
ezmlm warning
- webappsec-help_at_securityfocus.com (Mon Jul 22 2002 - 15:34:58 CDT)
Fwd: Usefull tools for finding vulnerabilities in web-based progra ms?
- Dave Aitel (Tue Sep 24 2002 - 08:36:28 CDT)
- Dennis Groves (Thu Sep 19 2002 - 09:37:44 CDT)
Good Article about Java Security
- Peter Conrad (Thu Jul 18 2002 - 04:56:09 CDT)
- Mark Curphey (Wed Jul 17 2002 - 14:17:13 CDT)
Help finding a cookie generator
- Vitaly Osipov (Wed Jul 03 2002 - 15:19:25 CDT)
- Vitor Ventura (Wed Jul 03 2002 - 03:59:38 CDT)
- Chris Huseman (Tue Jul 02 2002 - 15:56:53 CDT)
- Michael Sutton (Tue Jul 02 2002 - 15:35:51 CDT)
- Vitaly Osipov (Tue Jul 02 2002 - 15:12:13 CDT)
- Marty Block (Tue Jul 02 2002 - 13:11:07 CDT)
Help finding a cookie generator END OF THREAD AND THANKS!!!
- Marty Block (Wed Jul 03 2002 - 15:42:25 CDT)
HTTP & SSL Sessions
- Kevin Spett (Thu Aug 08 2002 - 11:44:08 CDT)
- Kevin Spett (Thu Aug 08 2002 - 12:01:59 CDT)
- Nik Cubrilovic (Thu Aug 08 2002 - 09:42:33 CDT)
- Bob Lee (Thu Aug 08 2002 - 02:01:13 CDT)
- Bob Lee (Thu Aug 08 2002 - 01:12:48 CDT)
HTTPS Question
- Lars Troen (Sat Aug 31 2002 - 17:01:27 CDT)
- Bob Lee (Sat Aug 31 2002 - 13:07:34 CDT)
Interesting scan
- zeno (Sat Aug 24 2002 - 13:01:10 CDT)
- sunzi (Fri Aug 23 2002 - 16:50:00 CDT)
- zeno (Fri Aug 23 2002 - 12:14:38 CDT)
JSP (app security)
- ssgill_at_starhub.net.sg (Wed Jul 10 2002 - 00:16:29 CDT)
- Kevin Spett (Tue Jul 09 2002 - 22:40:11 CDT)
- Gregory Steuck (Tue Jul 09 2002 - 20:12:33 CDT)
- Andrew van der Stock (Tue Jul 09 2002 - 18:42:10 CDT)
- Nelson Sampaio Araujo Junior (Tue Jul 09 2002 - 18:10:45 CDT)
- Wall, Kevin (Tue Jul 09 2002 - 14:48:52 CDT)
- Nik Cubrilovic (Tue Jul 09 2002 - 12:48:34 CDT)
- Scott Mulcahy (Tue Jul 09 2002 - 09:42:12 CDT)
- Ryan Fox (Tue Jul 09 2002 - 10:28:42 CDT)
- dnsadmin_at_cboss.com (Tue Jul 09 2002 - 09:27:25 CDT)
- Alan Pope (Tue Jul 09 2002 - 09:19:22 CDT)
- Andrew van der Stock (Tue Jul 09 2002 - 02:28:20 CDT)
List of open source web apps/tools - auditing/pen test/etc
- contact_at_draco.mine.nu (Sat Sep 28 2002 - 05:30:14 CDT)
- Ulf H{rnhammar (Fri Sep 27 2002 - 15:06:49 CDT)
- Dan Cuthbert (Fri Sep 27 2002 - 15:02:04 CDT)
- Hay, Brennan (Contractor) (Fri Sep 27 2002 - 12:50:21 CDT)
Manipulating Microsoft SQL Server Using SQL Injection
- Aaron C. Newman (Wed Aug 28 2002 - 11:38:02 CDT)
Manipulating Microsoft SQL Server Using SQL Injection (+ DNS Tunnels)
- Haroon Meer (Thu Aug 29 2002 - 03:45:45 CDT)
Metis 1.4 released
- Sacha Faust (Fri Aug 23 2002 - 17:36:41 CDT)
Metis 1.4.1 released
- Sacha Faust (Thu Aug 29 2002 - 01:31:47 CDT)
Metrics...
- Gabriel Lawrence (Tue Jul 09 2002 - 14:21:49 CDT)
Mime Types and determining an uploaded file type
- Tom Emerson (Thu Jul 04 2002 - 07:48:51 CDT)
- Peter Conrad (Thu Jul 04 2002 - 05:56:08 CDT)
- Gregory Steuck (Thu Jul 04 2002 - 01:27:02 CDT)
- James Fleming (Wed Jul 03 2002 - 21:48:27 CDT)
Mozilla and MSIE handle Referer over HTTPS differently
- Lars Troen (Fri Aug 23 2002 - 04:17:23 CDT)
- Sverre H. Huseby (Thu Aug 22 2002 - 13:40:43 CDT)
New Perl XSS audit tool
- Matt Sergeant (Mon Aug 12 2002 - 05:06:39 CDT)
Now Online: OWASP Guide to Building Secure Web Applications v1.1
- David Endler (Mon Sep 23 2002 - 15:48:58 CDT)
On sessions (rather long)
- Jason Coombs (Tue Sep 03 2002 - 13:41:40 CDT)
- Daniel Hedrick (Tue Sep 03 2002 - 07:23:37 CDT)
- Peter Conrad (Tue Sep 03 2002 - 02:04:35 CDT)
- HarryM (Mon Sep 02 2002 - 12:42:50 CDT)
- joffrey.zehnder_at_freesurf.ch (Mon Sep 02 2002 - 04:23:26 CDT)
- Alex Russell (Thu Aug 29 2002 - 23:43:37 CDT)
- Bob Lee (Thu Aug 29 2002 - 20:08:40 CDT)
- Jason Coombs (Thu Aug 29 2002 - 20:32:14 CDT)
- Jason Coombs (Thu Aug 29 2002 - 21:05:52 CDT)
- Alex Russell (Thu Aug 29 2002 - 20:30:45 CDT)
- Alex Russell (Thu Aug 29 2002 - 01:56:57 CDT)
- Jason Coombs (Wed Aug 28 2002 - 23:22:52 CDT)
- Alex Russell (Mon Aug 26 2002 - 10:30:31 CDT)
- Kevin Spett (Mon Aug 26 2002 - 09:28:12 CDT)
- Sverre H. Huseby (Mon Aug 26 2002 - 02:29:39 CDT)
- Jason Coombs (Sun Aug 25 2002 - 22:11:19 CDT)
- Sverre H. Huseby (Sun Aug 25 2002 - 09:42:18 CDT)
OWASP - command execution page.
- Martin Eiszner (Thu Jul 18 2002 - 15:58:21 CDT)
- Masaru Matsunami (Thu Jul 18 2002 - 12:19:54 CDT)
- b0iler (Wed Jul 17 2002 - 22:03:29 CDT)
OWASP Guide improvements
- Mark Curphey (Sat Sep 21 2002 - 19:13:52 CDT)
- Ulf Harnhammar (Sat Sep 21 2002 - 18:12:32 CDT)
OWASP Update
- Mark Curphey (Mon Aug 05 2002 - 22:52:53 CDT)
Paper on Web Application Security
- Patrice Neff (Sun Aug 04 2002 - 07:39:23 CDT)
- b0iler _ (Mon Jul 22 2002 - 00:20:21 CDT)
- Patrice Neff (Sun Jul 21 2002 - 16:01:11 CDT)
PenProxy - an extremely simple web pen-test proxy
- Sverre H. Huseby (Fri Sep 27 2002 - 07:17:59 CDT)
PHP header() CRLF Injection
- Peter Conrad (Mon Sep 09 2002 - 02:47:38 CDT)
PHP Programming Guidelines [paper]
- John Percival (Tue Sep 10 2002 - 09:23:02 CDT)
- Kevin Spett (Tue Sep 10 2002 - 09:04:15 CDT)
- Mikael Simonsson (Tue Sep 10 2002 - 08:09:57 CDT)
Post vs GET thread no longer
- Mark Curphey (Thu Jul 11 2002 - 11:32:44 CDT)
Q about PHP and ASP includes
- Kevin Spett (Thu Aug 08 2002 - 11:05:43 CDT)
- sunzi (Thu Aug 08 2002 - 09:40:32 CDT)
- Gatis Mednis (Thu Aug 08 2002 - 03:53:09 CDT)
Rational Software employees ?
- Mark Curphey (Sun Sep 29 2002 - 16:27:44 CDT)
risks of # and & (XSS)
- b0iler (Thu Jul 18 2002 - 22:06:17 CDT)
- Alex Lambert (Thu Jul 18 2002 - 21:30:36 CDT)
- zeno (Thu Jul 18 2002 - 17:53:11 CDT)
secure coding thread
- Mark Curphey (Mon Sep 09 2002 - 15:57:00 CDT)
Securing sessions [was: Warning: PHP 4.2 may put session ids in URLs]
- Stig Jorgensen (Wed Aug 28 2002 - 10:17:00 CDT)
- Alex Russell (Mon Aug 26 2002 - 11:09:35 CDT)
- Alex Russell (Mon Aug 26 2002 - 10:08:54 CDT)
- Sverre H. Huseby (Mon Aug 26 2002 - 11:43:25 CDT)
- Sverre H. Huseby (Mon Aug 26 2002 - 00:54:26 CDT)
- Keith Smith (Sun Aug 25 2002 - 19:56:03 CDT)
- Jason Coombs (Sun Aug 25 2002 - 22:20:48 CDT)
- Sverre H. Huseby (Sun Aug 25 2002 - 17:38:11 CDT)
- Jonas Anden (Sun Aug 25 2002 - 17:06:24 CDT)
- Keith Smith (Sun Aug 25 2002 - 09:38:03 CDT)
Security Practices for MS architecture
- Christopher Todd (Sun Aug 25 2002 - 10:44:15 CDT)
- Gal.Rozov_at_eAladdin.com (Sun Aug 25 2002 - 03:53:15 CDT)
SIDs in URLs when using HTTPS ?
- cdavison_at_nucleus.com (Fri Sep 20 2002 - 16:17:15 CDT)
- Bennett Todd (Fri Sep 20 2002 - 10:42:57 CDT)
- Bill Pennington (Fri Sep 20 2002 - 11:56:36 CDT)
- Dawes, Rogan (ZA - Johannesburg) (Fri Sep 20 2002 - 10:10:04 CDT)
- Michael Howard (Fri Sep 20 2002 - 12:17:40 CDT)
- Fred Williams (Fri Sep 20 2002 - 10:21:27 CDT)
- Anthony Baratta (Fri Sep 20 2002 - 10:33:15 CDT)
- Sverre H. Huseby (Fri Sep 20 2002 - 11:20:11 CDT)
- Benjamin (Fri Sep 20 2002 - 08:08:33 CDT)
SiteMinder Siebel Integration
- Kevin Wharram (Wed Aug 07 2002 - 10:59:10 CDT)
Slow list moderation for next few weeks
- Alex Russell (Sun Aug 18 2002 - 12:22:13 CDT)
- Mark Curphey (Sun Aug 18 2002 - 09:17:51 CDT)
So whats in a good webappsec assesment tool ?
- Security Architect (Sun Sep 29 2002 - 16:54:41 CDT)
- Dave Aitel (Thu Sep 26 2002 - 08:20:24 CDT)
- Kurt Seifried (Thu Sep 26 2002 - 00:02:58 CDT)
- Mark Curphey (Wed Sep 25 2002 - 15:08:41 CDT)
Some questions regarding IIS, Certs and Security practices
- Gal.Rozov_at_eAladdin.com (Tue Aug 27 2002 - 05:33:59 CDT)
SPIKE 2.5 and associated vulns
- Dave Aitel (Mon Aug 05 2002 - 19:02:44 CDT)
SPIKE Proxy 1.0 Release
- Dave Aitel (Fri Jul 12 2002 - 11:47:57 CDT)
SPIKE Proxy 1.1 Released
- Dave Aitel (Mon Jul 22 2002 - 15:48:28 CDT)
SPIKE Proxy 1.2 in SPIKE 2.6
- Dave Aitel (Wed Sep 04 2002 - 11:22:41 CDT)
SPIKE Proxy 1.3 Release party at my house!
- Dave Aitel (Thu Sep 26 2002 - 12:54:46 CDT)
SQL Injections and JDBC
- Breidenbach, Beth (Wed Aug 28 2002 - 11:41:07 CDT)
- Vitor Ventura (Wed Aug 28 2002 - 08:27:52 CDT)
- Nick Lothian (Mon Aug 12 2002 - 00:40:16 CDT)
- Jeff Williams (Sun Aug 11 2002 - 22:03:34 CDT)
- Herry Koh (Fri Aug 09 2002 - 03:52:06 CDT)
- moksha faced (Thu Aug 08 2002 - 18:06:18 CDT)
- Herry (Thu Aug 08 2002 - 02:37:02 CDT)
- Nick Lothian (Wed Aug 07 2002 - 22:24:25 CDT)
- Ben Mord (Wed Aug 07 2002 - 22:24:24 CDT)
- Chip Andrews (Wed Aug 07 2002 - 21:32:21 CDT)
- Jeff Williams (Wed Aug 07 2002 - 20:50:30 CDT)
- Michael Howard (Wed Aug 07 2002 - 19:12:17 CDT)
- Jeff Williams (Wed Aug 07 2002 - 19:12:33 CDT)
- Kevin Spett (Wed Aug 07 2002 - 18:56:53 CDT)
- Kevin Spett (Wed Aug 07 2002 - 18:48:18 CDT)
- Ben Mord (Wed Aug 07 2002 - 16:36:45 CDT)
- Chip Andrews (Wed Aug 07 2002 - 16:21:54 CDT)
- Bob Lee (Wed Aug 07 2002 - 15:29:03 CDT)
- Kevin Spett (Wed Aug 07 2002 - 15:10:02 CDT)
- M Ponkumar Venkatesh (Wed Aug 07 2002 - 15:35:22 CDT)
- Bob Lee (Wed Aug 07 2002 - 14:21:32 CDT)
SSL vulnerability in IE and KDE's Konqueror
- Peter Conrad (Wed Aug 14 2002 - 02:22:28 CDT)
- Jason Coombs (Wed Aug 14 2002 - 00:19:20 CDT)
- Mathieu Gervais (Tue Aug 13 2002 - 10:04:50 CDT)
- Christopher Todd (Mon Aug 12 2002 - 21:12:14 CDT)
Trusted Paths for Browsers: An Open-Source Solution to Web Spoofing
- aleph1_at_securityfocus.com (Tue Jul 16 2002 - 01:20:57 CDT)
Two problems.
- Nick Jacobsen (Thu Aug 15 2002 - 21:50:26 CDT)
- Ivan Hernandez (Thu Aug 15 2002 - 09:28:39 CDT)
- Ken Schaefer (Wed Aug 14 2002 - 21:45:39 CDT)
- cathal connolly (Wed Aug 14 2002 - 18:39:42 CDT)
- Matthew Hannigan (Wed Aug 14 2002 - 17:54:02 CDT)
- George W. Capehart (Wed Aug 14 2002 - 16:56:25 CDT)
- dwarkeeper (Wed Aug 14 2002 - 14:40:25 CDT)
- Alex Russell (Wed Aug 14 2002 - 14:04:41 CDT)
- Darren Davison (Wed Aug 14 2002 - 13:54:50 CDT)
- Qubit (Wed Aug 14 2002 - 13:04:11 CDT)
- cdavison_at_nucleus.com (Wed Aug 14 2002 - 11:31:33 CDT)
- Patrick Johanneson (Wed Aug 14 2002 - 10:57:43 CDT)
- David Garnier (Wed Aug 14 2002 - 10:20:48 CDT)
- Wm. G. Urquhart (Wed Aug 14 2002 - 10:50:13 CDT)
- Marcel Erkens (Wed Aug 14 2002 - 11:10:46 CDT)
- Harbar, Spencer (Wed Aug 14 2002 - 10:52:39 CDT)
- Joe Durbin (Wed Aug 14 2002 - 11:04:03 CDT)
- alex (Wed Aug 14 2002 - 10:01:51 CDT)
- Ivan Hernandez (Wed Aug 14 2002 - 09:14:15 CDT)
URI length limits (was: Best Practices for passing data via HTTP)
- Gregory Steuck (Wed Jul 10 2002 - 16:18:03 CDT)
Usefull tools for finding vulnerabilities in web-based progra ms?
- Dave Aitel (Tue Sep 24 2002 - 08:21:28 CDT)
- Nick Jacobsen (Wed Sep 18 2002 - 23:54:32 CDT)
- Kurt Seifried (Wed Sep 18 2002 - 18:36:08 CDT)
- Mark Curphey (Wed Sep 18 2002 - 11:57:17 CDT)
- Vince Hoffman (Wed Sep 18 2002 - 08:21:30 CDT)
Usefull tools for finding vulnerabilities in web-based programs?
- Kevin Spett (Thu Sep 19 2002 - 14:29:18 CDT)
- Dave Aitel (Wed Sep 18 2002 - 07:37:29 CDT)
- Chris Reining (Wed Sep 18 2002 - 12:46:10 CDT)
- Shashank Rai (Wed Sep 18 2002 - 11:52:32 CDT)
- Nick Jacobsen (Tue Sep 17 2002 - 20:00:33 CDT)
Using SPIKE
- Dave Aitel (Fri Sep 27 2002 - 12:58:21 CDT)
- zod (Fri Sep 27 2002 - 06:56:57 CDT)
Warning: PHP 4.2 may put session ids in URLs
- Sverre H. Huseby (Wed Sep 04 2002 - 16:41:09 CDT)
- Steven J. Sobol (Wed Sep 04 2002 - 12:28:58 CDT)
- Cushing, David (Wed Sep 04 2002 - 09:05:15 CDT)
- Lars Troen (Tue Sep 03 2002 - 17:02:39 CDT)
- Gregory Steuck (Tue Sep 03 2002 - 09:55:48 CDT)
- Jason (Wed Aug 28 2002 - 22:13:53 CDT)
- Sverre H. Huseby (Tue Aug 27 2002 - 15:49:11 CDT)
- Nik Cubrilovic (Tue Aug 27 2002 - 12:07:43 CDT)
- Jonas Anden (Tue Aug 27 2002 - 07:36:51 CDT)
- Alex Russell (Mon Aug 26 2002 - 10:53:08 CDT)
- Ogle Ron (Rennes) (Mon Aug 26 2002 - 06:59:44 CDT)
- Sverre H. Huseby (Mon Aug 26 2002 - 03:48:12 CDT)
- Steve Mcilwain (Sun Aug 25 2002 - 20:19:55 CDT)
- Alex Russell (Sun Aug 25 2002 - 22:00:17 CDT)
- Jason Coombs (Sun Aug 25 2002 - 18:11:44 CDT)
- Alex Russell (Sun Aug 25 2002 - 17:08:07 CDT)
- Peter Petermann (Sun Aug 25 2002 - 17:34:56 CDT)
- Liam Quinn (Sun Aug 25 2002 - 17:00:01 CDT)
- Alex Russell (Sun Aug 25 2002 - 14:14:24 CDT)
- Andrew Blyler (Sun Aug 25 2002 - 10:07:43 CDT)
- Jonas Anden (Sat Aug 24 2002 - 16:53:34 CDT)
- Alex Russell (Sat Aug 24 2002 - 14:48:38 CDT)
- Merlin, The Mage (Sat Aug 24 2002 - 13:17:15 CDT)
- Alex Lambert (Sat Aug 24 2002 - 13:34:52 CDT)
- David Endler (Sat Aug 24 2002 - 11:32:43 CDT)
- Peter Petermann (Sat Aug 24 2002 - 10:38:27 CDT)
- Sverre H. Huseby (Sat Aug 24 2002 - 05:37:21 CDT)
- Sverre H. Huseby (Sat Aug 24 2002 - 05:31:06 CDT)
- Peter Petermann (Sat Aug 24 2002 - 05:21:48 CDT)
- Peter Petermann (Sat Aug 24 2002 - 05:21:37 CDT)
- Sverre H. Huseby (Sat Aug 24 2002 - 03:46:38 CDT)
- Craig Davison (Fri Aug 23 2002 - 19:44:14 CDT)
- Sverre H. Huseby (Fri Aug 23 2002 - 16:32:43 CDT)
- cdavison_at_nucleus.com (Fri Aug 23 2002 - 15:39:23 CDT)
- Sverre H. Huseby (Fri Aug 23 2002 - 12:00:17 CDT)
- Peter Petermann (Fri Aug 23 2002 - 11:48:00 CDT)
- Sverre H. Huseby (Fri Aug 23 2002 - 08:45:40 CDT)
- Kevin Spett (Fri Aug 23 2002 - 08:27:27 CDT)
- Sverre H. Huseby (Fri Aug 23 2002 - 02:34:53 CDT)
web authentication
- Andrew van der Stock (Fri Sep 13 2002 - 01:51:23 CDT)
- Matt Woodyard (Thu Sep 12 2002 - 14:16:12 CDT)
- Wang, Jack (Tue Sep 10 2002 - 09:45:13 CDT)
- Soriano, Raymond (US - Miami) (Tue Sep 10 2002 - 09:14:01 CDT)
- Wang, Jack (Tue Sep 10 2002 - 09:23:45 CDT)
- Ogle Ron (Rennes) (Tue Sep 10 2002 - 11:22:36 CDT)
- Donoghue, Mark (Tue Sep 10 2002 - 08:46:52 CDT)
- De Ridder, Bavo (Tue Sep 10 2002 - 08:40:12 CDT)
- Ogle Ron (Rennes) (Tue Sep 10 2002 - 08:34:31 CDT)
- Wang, Jack (Tue Sep 10 2002 - 08:29:40 CDT)
Web Server Log Files - Security Events Analysis
- mushu999_at_NOSPAM.hotmail.com (Fri Jul 26 2002 - 23:52:13 CDT)
- Jared Lovell (Sat Jul 27 2002 - 00:38:59 CDT)
- James Fleming (Fri Jul 26 2002 - 13:45:46 CDT)
Web Services Vulnerabilities
- H D Moore (Wed Jul 24 2002 - 02:43:52 CDT)
- James Fleming (Mon Jul 22 2002 - 23:56:04 CDT)
webappsec Charter
- Mark Curphey (Mon Jul 01 2002 - 22:31:58 CDT)
WebLogic Session IDs
- Gregory Steuck (Tue Jul 09 2002 - 20:17:04 CDT)
- James Fleming (Tue Jul 09 2002 - 00:22:12 CDT)
WG: On sessions (rather long)
- freddie.soerensen_at_conares.com (Mon Aug 26 2002 - 03:51:27 CDT)
XSS when a session ID is required
- billp_at_boarder.org (Wed Aug 21 2002 - 11:49:15 CDT)
- stephen (Wed Aug 21 2002 - 09:22:56 CDT)
- stephen (Wed Aug 21 2002 - 09:33:00 CDT)
- Kevin Spett (Wed Aug 21 2002 - 08:45:10 CDT)
- Jason (Wed Aug 21 2002 - 08:46:53 CDT)
- stephen (Wed Aug 21 2002 - 04:53:55 CDT)
- Jason (Tue Aug 20 2002 - 20:59:27 CDT)
- stephen (Tue Aug 20 2002 - 04:00:47 CDT)
XSS when a session ID is required)
- David Wong (Thu Aug 22 2002 - 10:07:23 CDT)

Last message date: Mon Sep 30 2002 - 09:26:58 CDT
Archived on: Mon Sep 30 2002 - 09:26:59 CDT

413 messages sorted by: [ author ] [ date ] [ thread ]