NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > WWW-Mobile-Code> 2005-q1

512 messages sorted by: [ author ] [ date ] [ thread ]

Starting: Tue Jan 04 2005 - 15:06:39 CST
Ending: Thu Mar 31 2005 - 12:37:35 CST

(chaffing and winnowing) Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's Web Applications"
- Evans, Arian (Mon Jan 10 2005 - 16:46:11 CST)
(not really a) Proposal to anti-phishing
- Scovetta, Michael V (Mon Jan 24 2005 - 17:35:08 CST)
- Wall, Kevin (Mon Jan 24 2005 - 13:28:45 CST)
- Rishi Pande (Mon Jan 24 2005 - 14:08:13 CST)
- Mike Andrews (Mon Jan 24 2005 - 13:39:11 CST)
- Mike Andrews (Mon Jan 24 2005 - 11:35:48 CST)
- Rishi Pande (Mon Jan 24 2005 - 10:16:14 CST)
- Scott, Richard (Wed Jan 19 2005 - 11:14:09 CST)
- Evans, Arian (Tue Jan 18 2005 - 13:06:07 CST)
(secure email) Proposal to anti-phishing
- Michael Silk (Tue Jan 25 2005 - 03:35:15 CST)
- Lyal Collins (Tue Jan 25 2005 - 01:14:52 CST)
- Lyal Collins (Mon Jan 24 2005 - 12:53:17 CST)
- Eric McCarty (Mon Jan 24 2005 - 11:25:46 CST)
- Lyal Collins (Mon Jan 24 2005 - 13:42:26 CST)
- Lyal Collins (Mon Jan 24 2005 - 13:30:43 CST)
- Michael Silk (Mon Jan 24 2005 - 16:37:26 CST)
- Michael Silk (Mon Jan 24 2005 - 01:41:54 CST)
- Lyal Collins (Mon Jan 24 2005 - 01:26:40 CST)
- Michael Silk (Mon Jan 24 2005 - 03:56:12 CST)
- Lyal Collins (Mon Jan 24 2005 - 01:54:46 CST)
- Michael Silk (Sun Jan 23 2005 - 22:24:12 CST)
- Lyal Collins (Wed Jan 19 2005 - 02:27:51 CST)
- Evans, Arian (Tue Jan 18 2005 - 11:44:36 CST)
(smart cards) Proposal to anti-phishing
- Evans, Arian (Mon Jan 24 2005 - 15:45:17 CST)
(webrute) How to list all the URLs on a web server
- Evans, Arian (Mon Jan 10 2005 - 15:35:40 CST)
[ANNOUNCE] kses 0.2.2
- Ulf Härnhammar (Mon Feb 07 2005 - 20:05:06 CST)
[Fwd: [security] Remotely Controlling XSS Attacks - Announcing XSS-Proxy]
- George Capehart (Sat Feb 12 2005 - 17:24:17 CST)
[Fwd: Paper: SQL Injection Attacks by Example]
- George Capehart (Sun Jan 09 2005 - 21:04:11 CST)
[SCL-2005.002] - IDN Feature Workaround via proxy.pac
- Scovetta, Michael V (Tue Feb 08 2005 - 11:39:59 CST)
[tool] Guardian<img src="/imgs/at.gif" border=0 align=middle>JUMPERZ.NET : Detecting session hijack
- Ivan Ristic (Sat Feb 05 2005 - 04:44:44 CST)
- Ivan Ristic (Fri Feb 04 2005 - 13:55:18 CST)
- Kanatoko (Fri Feb 04 2005 - 16:49:35 CST)
- Ofer Shezaf (Thu Feb 03 2005 - 19:40:49 CST)
- Kanatoko (Wed Feb 02 2005 - 03:47:56 CST)
A proposal for anti-phishing
- Michael Silk (Wed Jan 19 2005 - 01:31:30 CST)
Achieving Sign On for non-web resource.
- Peter Watkins (Wed Feb 09 2005 - 15:30:08 CST)
- Richard Attermeyer (Wed Feb 09 2005 - 15:17:41 CST)
- Saqib Ali (Wed Feb 09 2005 - 12:21:56 CST)
- Babu Kopparam (Wed Feb 09 2005 - 14:14:32 CST)
Announcing: OWASP AppSec Europe 2005, April 9-10
- Jeff Williams (Sun Jan 16 2005 - 09:29:23 CST)
Anti-Phishing, why it doesn't work
- Jeremiah Grossman (Mon Jan 24 2005 - 12:31:22 CST)
- robertdyadsecurity.com (Mon Jan 24 2005 - 12:41:16 CST)
- Felix Berger (Mon Jan 24 2005 - 12:13:57 CST)
- Joseph Miller (Mon Jan 24 2005 - 10:34:48 CST)
Any security issue with using SPNEGOto perform single-sign-on?
- Paul Johnston (Wed Mar 23 2005 - 07:07:37 CST)
- Saqib Ali (Thu Mar 17 2005 - 16:19:20 CST)
applet security connecting to hosts
- Jeremiah Grossman (Thu Mar 10 2005 - 09:50:49 CST)
- Haroon Meer (Thu Mar 10 2005 - 00:42:45 CST)
- F Lace (Mon Mar 07 2005 - 00:40:56 CST)
as security pro's, how do you use the web now?
- Matthew Caston (Wed Jan 19 2005 - 09:37:50 CST)
- ACMurraycmp.com (Wed Jan 19 2005 - 01:19:08 CST)
- Rogan Dawes (Fri Jan 14 2005 - 10:15:20 CST)
- Sorensen, Clark C (Fri Jan 14 2005 - 10:29:37 CST)
- Haroon Meer (Fri Jan 14 2005 - 09:32:16 CST)
- Daniel (Thu Jan 13 2005 - 06:05:22 CST)
Assisting open source projects
- Andrew van der Stock (Mon Mar 14 2005 - 19:10:58 CST)
Authorization Framework.
- Yuri Demchenko (Mon Jan 24 2005 - 14:50:03 CST)
- D. HÃ¶hn (Mon Jan 24 2005 - 00:48:41 CST)
- Babu Kopparam (Thu Jan 20 2005 - 00:23:59 CST)
Automagic webapp testing tools
- Leigh Morresi (Sun Mar 20 2005 - 21:53:50 CST)
- robertdyadsecurity.com (Sun Mar 13 2005 - 19:37:19 CST)
- Evans, Arian (Thu Mar 10 2005 - 12:35:58 CST)
- inflatablekiwigmail.com (Wed Mar 09 2005 - 02:02:29 CST)
awareness improvement demo
- koro69yepmail.net (Sat Mar 05 2005 - 06:14:42 CST)
Ber encoding for ldap response control.
- Babu Kopparam (Thu Mar 17 2005 - 14:22:29 CST)
Betr.: detecting malicious image file
- Philip Wagenaar (Mon Feb 07 2005 - 09:51:33 CST)
Boston OWASP Chapter
- Weiler, Jim (Wed Mar 02 2005 - 14:18:53 CST)
calling all software security tool vendors/freeware/open source project leads
- Evans, Arian (Mon Mar 14 2005 - 15:43:24 CST)
- Evans, Arian (Fri Mar 11 2005 - 17:36:29 CST)
Canicalization Of User Input In PHP
- Paul Johnston (Wed Jan 19 2005 - 08:16:54 CST)
- warningsenvisagement.com (Mon Jan 17 2005 - 00:40:11 CST)
Categories for application security testing & tools
- Evans, Arian (Wed Mar 02 2005 - 12:01:11 CST)
Clarification to: -->calling all software security tool vendors/freeware/open source project leads
- Evans, Arian (Sat Mar 12 2005 - 19:44:00 CST)
clear-text passwords in shell/perl scripts
- M. Shirk (Mon Mar 28 2005 - 12:21:16 CST)
- Scovetta, Michael V (Mon Mar 28 2005 - 11:33:53 CST)
- Ofer Shezaf (Wed Mar 23 2005 - 13:58:11 CST)
- Paul Johnston (Wed Mar 23 2005 - 03:45:07 CST)
- Carsten Kuckuk (Wed Mar 23 2005 - 02:58:31 CST)
- Liran Cohen (Mon Mar 21 2005 - 06:43:46 CST)
- Richard Moore (Mon Mar 21 2005 - 07:38:14 CST)
- Joseph Miller (Mon Mar 21 2005 - 08:34:07 CST)
- Griffiths, Ian (Mon Mar 21 2005 - 07:32:14 CST)
- Jeff Robertson (Fri Mar 18 2005 - 12:18:41 CST)
Content monitorting in Application Security
- Ofer Shezaf (Tue Jan 25 2005 - 16:17:35 CST)
- Martin Schapendonk (Mon Jan 24 2005 - 01:28:45 CST)
- Ofer Shezaf (Wed Jan 19 2005 - 03:23:29 CST)
- Ofer Shezaf (Wed Jan 19 2005 - 02:45:18 CST)
- Jeremiah Grossman (Fri Jan 14 2005 - 10:39:12 CST)
- Jeremiah Grossman (Mon Jan 10 2005 - 12:34:41 CST)
- Ivan Ristic (Mon Jan 10 2005 - 10:16:42 CST)
- Antoine Martin (Mon Jan 10 2005 - 08:12:25 CST)
- oliver.karowgmx.de (Mon Jan 10 2005 - 01:30:45 CST)
- Martin Maèok (Mon Jan 10 2005 - 03:35:58 CST)
- Ofer Shezaf (Sun Jan 09 2005 - 15:22:35 CST)
- Paul Laudanski (Sat Jan 08 2005 - 22:33:20 CST)
- Security (Sat Jan 08 2005 - 01:40:50 CST)
- Jeremiah Grossman (Fri Jan 07 2005 - 19:43:43 CST)
- Paul Laudanski (Fri Jan 07 2005 - 18:21:46 CST)
- Ivan Ristic (Fri Jan 07 2005 - 18:13:54 CST)
- Alfred Hitchcock (Fri Jan 07 2005 - 06:55:34 CST)
Copying files from one server to another.
- Booth, Simon (Thu Feb 24 2005 - 03:09:09 CST)
- MAGNY David (Thu Feb 24 2005 - 06:17:15 CST)
- David (Wed Feb 23 2005 - 21:35:08 CST)
- dave kleiman (Wed Feb 23 2005 - 21:24:24 CST)
- Michael Sztachanski (Wed Feb 23 2005 - 21:10:23 CST)
- Eric Boughner (Tue Feb 22 2005 - 07:01:40 CST)
current responses to phishing
- q q (Tue Feb 15 2005 - 11:53:43 CST)
- Rishi Pande (Thu Feb 03 2005 - 11:35:51 CST)
Data sanitization approaches in Java
- Stephen de Vries (Mon Jan 17 2005 - 05:38:11 CST)
- Jeff Williams (Sun Jan 16 2005 - 08:11:18 CST)
- Benjamin Livshits (Fri Jan 14 2005 - 15:20:56 CST)
detecting malicious image file
- Weiler, Jim (Mon Feb 07 2005 - 08:42:09 CST)
Doubt in Application Audit
- varun uppal (Thu Feb 24 2005 - 01:15:51 CST)
- Jeffory Atkinson (Thu Feb 24 2005 - 18:04:40 CST)
- Shan, Xuning V (Vincent) (Wed Feb 23 2005 - 22:16:50 CST)
- Alfred Hitchcock (Wed Feb 23 2005 - 05:25:25 CST)
Dropping connection instead of returning 400
- Devdas Bhagat (Mon Mar 07 2005 - 01:23:47 CST)
- Garth Somerville (Fri Mar 04 2005 - 09:16:54 CST)
- Michel Arboi (Fri Mar 04 2005 - 05:39:41 CST)
- christopherbaus.net (Thu Mar 03 2005 - 17:26:34 CST)
- Michael Silk (Thu Mar 03 2005 - 16:56:09 CST)
- Mariusz Pêkala (Thu Mar 03 2005 - 16:20:56 CST)
- christopherbaus.net (Tue Mar 01 2005 - 22:59:37 CST)
eBanking Security Testing (network and application) Methodology Released
- Yuri Demchenko (Mon Mar 07 2005 - 03:39:54 CST)
- cbc (Fri Mar 04 2005 - 01:31:04 CST)
- peterebankingsecurity.com (Wed Mar 02 2005 - 05:59:48 CST)
Exploits from command line?
- Antoine Martin (Wed Jan 19 2005 - 12:41:51 CST)
- Benjamin Livshits (Tue Jan 18 2005 - 14:49:47 CST)
Filtering by client IP address for Web App Sessions
- Evans, Arian (Wed Mar 02 2005 - 10:34:28 CST)
- Paul Johnston (Mon Feb 28 2005 - 09:19:02 CST)
- Javier Fernandez-Sanguino (Mon Feb 28 2005 - 08:56:55 CST)
- Jason Coombs (Sun Feb 27 2005 - 16:40:25 CST)
- Frank Knobbe (Sat Feb 26 2005 - 22:11:43 CST)
- Scovetta, Michael V (Thu Feb 24 2005 - 22:19:48 CST)
- Griffiths, Ian (Thu Feb 24 2005 - 07:14:33 CST)
- exon (Thu Feb 24 2005 - 03:12:30 CST)
- Steve Shah (Wed Feb 23 2005 - 22:54:00 CST)
- Paul Johnston (Thu Feb 24 2005 - 10:00:45 CST)
- Amichai Shulman (Thu Feb 24 2005 - 05:35:04 CST)
- Evans, Arian (Wed Feb 23 2005 - 09:12:50 CST)
force extention handling in IIS?
- Adam Tuliper (Tue Feb 15 2005 - 12:25:03 CST)
- Ken Schaefer (Mon Feb 14 2005 - 17:55:34 CST)
- Cory Foy (Mon Feb 14 2005 - 10:49:53 CST)
- Ken Schaefer (Mon Feb 14 2005 - 06:12:23 CST)
- Adam Tuliper (Mon Feb 14 2005 - 02:31:52 CST)
- Alex 'CAVE' Cernat (Mon Feb 14 2005 - 01:58:14 CST)
- Damhuis Anton (Mon Feb 14 2005 - 00:29:16 CST)
- Leigh Morresi (Sun Feb 13 2005 - 17:28:47 CST)
Formation of OWASP Chapter in Winnipeg, MB, CA
- Yvan Boily (Tue Feb 08 2005 - 09:35:45 CST)
Foundstone Hacme Books and .NET Security Toolkit
- dotnetdeveloperhushmail.com (Thu Mar 10 2005 - 13:48:17 CST)
- Mark Curphey (Tue Mar 08 2005 - 14:08:23 CST)
Google Hacking and SiteDigger 2.0
- GuidoZ (Mon Jan 10 2005 - 20:04:12 CST)
- Kartik Trivedi (Mon Jan 10 2005 - 10:36:51 CST)
How to list all the URLs on a web server
- Ofer Shezaf (Mon Jan 10 2005 - 08:37:27 CST)
- PCSage Information Services (Mon Jan 10 2005 - 05:03:13 CST)
- tie (Sun Jan 09 2005 - 10:08:42 CST)
- Rafael San Miguel Carrasco (Sun Jan 09 2005 - 06:42:46 CST)
- Dan Connelly (Sat Jan 08 2005 - 20:08:21 CST)
- GuidoZ (Fri Jan 07 2005 - 18:10:48 CST)
- michaelsilkgmail.com (Sat Jan 08 2005 - 04:02:11 CST)
- Lyal Collins (Fri Jan 07 2005 - 17:46:28 CST)
- skill2die4secguru.com (Fri Jan 07 2005 - 17:19:13 CST)
- Ofer Shezaf (Fri Jan 07 2005 - 16:28:08 CST)
- Lists (Fri Jan 07 2005 - 10:35:08 CST)
HTMLEncode
- RSnake (Fri Jan 07 2005 - 16:40:47 CST)
- Alfred Hitchcock (Fri Jan 07 2005 - 04:39:46 CST)
Information about Software quality in Web Apps
- Philip Wagenaar (Tue Jan 04 2005 - 17:55:33 CST)
- Robert P³awiak (Tue Jan 04 2005 - 16:10:43 CST)
- Jaime Alvaro (Mon Jan 03 2005 - 20:26:02 CST)
Input Validation vs. Output Validation (was: ISA Server and SQL Injection)
- Jeff Williams (Thu Mar 03 2005 - 14:23:07 CST)
Is this expoitable via sql injection?
- Nils Gundelach (Sun Jan 16 2005 - 07:49:28 CST)
- Rogan Dawes (Fri Jan 14 2005 - 09:46:15 CST)
- Nils Gundelach (Tue Jan 11 2005 - 08:21:11 CST)
ISA Server and SQL Injection
- Paul Johnston (Thu Mar 03 2005 - 05:24:12 CST)
- Evans, Arian (Wed Mar 02 2005 - 19:29:18 CST)
- Jan P. Monsch (Wed Mar 02 2005 - 17:27:29 CST)
- Jan P. Monsch (Wed Mar 02 2005 - 17:26:44 CST)
- christopherbaus.net (Tue Mar 01 2005 - 17:44:41 CST)
- Evans, Arian (Wed Mar 02 2005 - 10:29:24 CST)
- Jan P. Monsch (Tue Mar 01 2005 - 15:36:43 CST)
- Stephen de Vries (Thu Feb 24 2005 - 12:51:24 CST)
- fantomas (Thu Feb 24 2005 - 23:28:43 CST)
- Paul Johnston (Thu Feb 24 2005 - 10:11:06 CST)
- Mark Curphey (Wed Feb 23 2005 - 10:09:26 CST)
- Paul Johnston (Wed Feb 23 2005 - 09:52:21 CST)
- Mark Curphey (Wed Feb 23 2005 - 08:58:01 CST)
- Paul Johnston (Wed Feb 23 2005 - 08:20:36 CST)
- Mark Curphey (Mon Feb 21 2005 - 14:06:54 CST)
- Ofer Shezaf (Sat Feb 19 2005 - 17:49:55 CST)
- Marty Block (Fri Feb 18 2005 - 08:55:55 CST)
- Matthieu Estrade (Fri Feb 18 2005 - 05:16:51 CST)
- Sebastien Deleersnyder (Fri Feb 18 2005 - 05:29:22 CST)
- Matthieu Estrade (Thu Feb 17 2005 - 15:56:49 CST)
- Jeff Robertson (Thu Feb 17 2005 - 13:58:18 CST)
- Matthieu Estrade (Thu Feb 17 2005 - 15:39:01 CST)
- Bogdan Tomchuk (Thu Feb 17 2005 - 12:50:53 CST)
- Tim Hoolihan (Thu Feb 17 2005 - 09:06:26 CST)
- Matthieu Estrade (Thu Feb 17 2005 - 07:58:26 CST)
- Roberto GABERGI (Thu Feb 17 2005 - 08:25:51 CST)
- charles freeman (Wed Feb 16 2005 - 12:19:24 CST)
- Bogdan Tomchuk (Wed Feb 16 2005 - 11:34:34 CST)
- Matthieu Estrade (Wed Feb 16 2005 - 02:53:20 CST)
- Darren Bounds (Wed Feb 16 2005 - 09:40:18 CST)
- Hofmeyr, Michael (ZA - Johannesburg) (Tue Feb 15 2005 - 12:04:54 CST)
- John Steer (Mon Feb 14 2005 - 19:48:02 CST)
- Rafael San Miguel (Mon Feb 14 2005 - 12:05:34 CST)
J2EE Guide List established
- Andrew van der Stock (Tue Feb 15 2005 - 18:10:34 CST)
Java -> .NET RSA Encryption
- john bart (Thu Mar 31 2005 - 00:12:13 CST)
java.net.URI.normalize() problem
- Felipe Moreno (Fri Feb 18 2005 - 17:59:22 CST)
- Garth Somerville (Fri Feb 18 2005 - 13:19:37 CST)
- Felipe Moreno (Thu Feb 17 2005 - 16:30:09 CST)
magic_quotes
- Matt Fisher (Tue Jan 18 2005 - 21:27:07 CST)
- James Barkley (Fri Jan 14 2005 - 09:48:37 CST)
- Wojciech Pawlikowski (Fri Jan 14 2005 - 00:59:09 CST)
New presentation: Advanced SQL Injection in Oracle databases
- Esteban Martínez Fayó (Thu Feb 03 2005 - 13:06:58 CST)
New Whitepaper available on security best practices
- webappsectechnicalinfo.net (Mon Jan 31 2005 - 12:18:33 CST)
New Whitepaper: Anti Brute Force Resource Metering
- Paul Johnston (Wed Mar 30 2005 - 03:24:31 CST)
Object Caching with IE 6 XP SP2
- Don Tuer (Fri Feb 25 2005 - 14:44:17 CST)
Odd things going on at the ChoicePoint Web site
- Richard M. Smith (Tue Feb 22 2005 - 06:59:32 CST)
- Jeff Robertson (Tue Feb 22 2005 - 06:47:51 CST)
- Bill Pennington (Mon Feb 21 2005 - 12:13:58 CST)
- Daniel (Mon Feb 21 2005 - 06:26:17 CST)
- Richard M. Smith (Sun Feb 20 2005 - 19:33:50 CST)
Off topic: what is sensitive information on a website?
- Michael Silk (Fri Jan 28 2005 - 18:44:02 CST)
- focuskarsites.net (Fri Jan 28 2005 - 13:51:36 CST)
- Martin Maèok (Fri Jan 28 2005 - 10:11:06 CST)
- Griffiths, Ian (Fri Jan 28 2005 - 09:46:48 CST)
- Dave Ryan (Fri Jan 28 2005 - 06:24:43 CST)
Open Source Events: PHP Security Conference
- Nathaniel Brown - Inimit (Mon Mar 14 2005 - 06:00:21 CST)
OWASP LA chapter meeting
- Kartik Trivedi (Tue Jan 25 2005 - 11:14:47 CST)
OWASP Meeting Tues 1/25 (6PM in Columbia MD)
- Jeff Williams (Thu Jan 20 2005 - 16:18:44 CST)
OWASP Washington, DC Local Chapter meeting set for 25 Jan
- Matthew Chalmers (Wed Jan 19 2005 - 22:08:38 CST)
Paros 3.2.0 beta release
- contactparosproxy.org (Sun Jan 23 2005 - 09:02:58 CST)
Paros 3.2.0 release
- contactparosproxy.org (Tue Mar 08 2005 - 09:06:05 CST)
Paros 3.2.0beta for Java 1.4.2
- contactparosproxy.org (Tue Jan 25 2005 - 11:00:50 CST)
Paros Mac OS X package
- Stephen de Vries (Thu Feb 17 2005 - 13:41:08 CST)
Passing Credentials in the clear- Possible fixes
- Lyal Collins (Sun Feb 27 2005 - 15:11:34 CST)
- Jeff (Fri Feb 25 2005 - 20:37:49 CST)
PCI - Visa / MC / Amex merchant security standards
- Lyal Collins (Sat Feb 12 2005 - 17:30:31 CST)
- Andre Ludwig (Wed Feb 09 2005 - 10:27:24 CST)
- Andrew van der Stock (Wed Feb 09 2005 - 07:06:33 CST)
- Andrew van der Stock (Tue Feb 08 2005 - 18:08:30 CST)
phishing pages
- WebAppSecurity [Technicalinfo.net] (Sat Jan 29 2005 - 12:43:57 CST)
- Paul Laudanski (Fri Jan 28 2005 - 23:36:38 CST)
- Tim Hoolihan (Thu Jan 27 2005 - 15:45:24 CST)
- Andrew Smith (Thu Jan 27 2005 - 15:08:36 CST)
- Rishi Pande (Wed Jan 26 2005 - 16:46:50 CST)
PHP Directory Transversal
- Alex 'CAVE' Cernat (Fri Mar 18 2005 - 13:06:44 CST)
- Andres Molinetti (Mon Mar 14 2005 - 11:02:38 CST)
- John GALLET (Mon Mar 14 2005 - 02:06:25 CST)
- Mehmet Buyukozer (Fri Mar 11 2005 - 00:50:37 CST)
- David M. Zendzian (Thu Mar 10 2005 - 12:02:02 CST)
- Ravish (Thu Mar 10 2005 - 11:31:02 CST)
- Sarath Kummamuru (Thu Mar 10 2005 - 09:18:41 CST)
- Andres Molinetti (Thu Mar 10 2005 - 08:48:28 CST)
- Richard Moore (Thu Mar 10 2005 - 08:41:16 CST)
- Felikz (Thu Mar 10 2005 - 08:44:17 CST)
- Andres Molinetti (Thu Mar 10 2005 - 08:22:29 CST)
php to do input validation...
- Darren Bounds (Thu Feb 03 2005 - 12:28:43 CST)
- Andrew van der Stock (Thu Feb 03 2005 - 03:26:49 CST)
- Griffiths, Ian (Thu Feb 03 2005 - 05:24:31 CST)
- Kevin Carlson (Wed Feb 02 2005 - 18:10:47 CST)
- Matthew Wirges (Tue Feb 01 2005 - 19:19:35 CST)
phpBB Ban
- Joseph Miller (Mon Mar 21 2005 - 08:24:58 CST)
- Daniel (Mon Mar 21 2005 - 03:20:08 CST)
- Joseph Miller (Fri Mar 18 2005 - 16:17:20 CST)
Preventing direct URL access in a J2EE environment
- Paul Johnston (Thu Mar 10 2005 - 09:16:11 CST)
- Kevin Conaway (Fri Mar 04 2005 - 08:09:22 CST)
- David Robert (Thu Mar 03 2005 - 19:35:18 CST)
- Evans, Arian (Thu Mar 03 2005 - 16:46:37 CST)
- Roy Britten (Thu Mar 03 2005 - 15:58:42 CST)
- Jeroen van Rijn (Thu Mar 03 2005 - 15:54:24 CST)
- Roy Britten (Thu Mar 03 2005 - 15:58:42 CST)
- Jeroen van Rijn (Thu Mar 03 2005 - 15:24:59 CST)
- Scovetta, Michael V (Thu Mar 03 2005 - 15:14:46 CST)
- Dwayne Ghant (Thu Mar 03 2005 - 15:28:11 CST)
- Paul Johnston (Thu Mar 03 2005 - 04:54:12 CST)
- Kevin Conaway (Wed Mar 02 2005 - 06:54:48 CST)
- Saqib Ali (Tue Mar 01 2005 - 23:22:52 CST)
- Jeff Robertson (Wed Mar 02 2005 - 21:25:56 CST)
- RSnake (Tue Mar 01 2005 - 16:34:30 CST)
- Saqib Ali (Tue Mar 01 2005 - 12:46:57 CST)
- Kevin Conaway (Tue Mar 01 2005 - 09:19:37 CST)
Proposal to anti-phishing
- Harper.Matthew (Thu Jan 27 2005 - 08:43:19 CST)
- Mike Podanoffsky (Wed Jan 26 2005 - 03:54:12 CST)
- Moksha Faced (Tue Jan 25 2005 - 12:59:59 CST)
- Rogan Dawes (Tue Jan 25 2005 - 01:30:33 CST)
- Michael Silk (Mon Jan 24 2005 - 23:11:44 CST)
- Kurt Seifried (Mon Jan 24 2005 - 18:59:06 CST)
- Lyal Collins (Mon Jan 24 2005 - 13:50:43 CST)
- Adler Eliacin (Mon Jan 24 2005 - 17:30:38 CST)
- Lyal Collins (Mon Jan 24 2005 - 13:13:43 CST)
- listsdawes.za.net (Mon Jan 24 2005 - 14:04:51 CST)
- Michael Silk (Mon Jan 24 2005 - 16:14:46 CST)
- Griffiths, Ian (Mon Jan 24 2005 - 11:27:44 CST)
- Robert Hajime Lanning (Mon Jan 24 2005 - 04:32:01 CST)
- Rogan Dawes (Mon Jan 24 2005 - 02:18:14 CST)
- Lyal Collins (Mon Jan 24 2005 - 01:23:26 CST)
- Rogan Dawes (Mon Jan 24 2005 - 06:22:18 CST)
- Lyal Collins (Mon Jan 24 2005 - 02:30:21 CST)
- Sam Koh (Sat Jan 22 2005 - 02:41:11 CST)
- Jimi Thompson (Fri Jan 21 2005 - 00:23:34 CST)
- Lyal Collins (Wed Jan 19 2005 - 13:22:59 CST)
- Cory Foy (Wed Jan 19 2005 - 06:47:07 CST)
- Rogan Dawes (Wed Jan 19 2005 - 04:59:24 CST)
- Michael Silk (Wed Jan 19 2005 - 04:18:33 CST)
- Rogan Dawes (Wed Jan 19 2005 - 04:07:40 CST)
- Michael Silk (Wed Jan 19 2005 - 03:40:40 CST)
- Rogan Dawes (Wed Jan 19 2005 - 03:21:05 CST)
- exon (Wed Jan 19 2005 - 03:08:04 CST)
- Michael Silk (Wed Jan 19 2005 - 01:44:15 CST)
- Rogan Dawes (Mon Jan 17 2005 - 01:58:24 CST)
- Lyal Collins (Tue Jan 18 2005 - 14:15:35 CST)
- Rogan Dawes (Mon Jan 17 2005 - 01:56:46 CST)
- Moksha Faced (Mon Jan 17 2005 - 22:24:00 CST)
- Michael Silk (Sun Jan 16 2005 - 17:45:56 CST)
- Lyal Collins (Sun Jan 16 2005 - 16:12:59 CST)
- Lyal Collins (Mon Jan 17 2005 - 13:17:48 CST)
- Florian Weimer (Sun Jan 16 2005 - 14:42:06 CST)
- Frank Knobbe (Sun Jan 16 2005 - 14:31:50 CST)
- Rogan Dawes (Mon Jan 17 2005 - 02:14:19 CST)
- Frank Knobbe (Sun Jan 16 2005 - 14:24:34 CST)
- Rob Skedgell (Sun Jan 16 2005 - 13:33:43 CST)
- Lyal Collins (Sun Jan 16 2005 - 00:38:54 CST)
- Lyal Collins (Sun Jan 16 2005 - 01:03:07 CST)
- Florian Weimer (Fri Jan 14 2005 - 16:58:21 CST)
- Rogan Dawes (Fri Jan 14 2005 - 10:19:07 CST)
- ACMurraycmp.com (Fri Jan 14 2005 - 13:00:12 CST)
- WebAppSecurity [Technicalinfo.net] (Fri Jan 14 2005 - 10:41:00 CST)
- RSnake (Fri Jan 14 2005 - 10:58:45 CST)
- Rishi Pande (Fri Jan 14 2005 - 10:10:56 CST)
- Rogan Dawes (Fri Jan 14 2005 - 10:05:22 CST)
- Don Tuer (Fri Jan 14 2005 - 09:28:23 CST)
- Rafael San Miguel (Wed Jan 12 2005 - 03:37:09 CST)
proxy/portal
- sfsecurax.dk (Wed Mar 16 2005 - 10:20:25 CST)
SAML implementation
- Yuri Demchenko (Wed Feb 09 2005 - 10:32:56 CST)
- Rishi Pande (Tue Feb 01 2005 - 08:19:57 CST)
SAP/SAP-Portal
- sfsecurax.dk (Tue Mar 15 2005 - 09:33:28 CST)
Secure coding techniques
- Andrew van der Stock (Thu Feb 03 2005 - 03:30:50 CST)
- _kiss_ (Mon Jan 31 2005 - 15:50:45 CST)
secure storage of sensitive data in J2EE
- exon (Mon Feb 14 2005 - 13:24:13 CST)
- Michael Silk (Thu Feb 10 2005 - 19:56:25 CST)
- exon (Thu Feb 10 2005 - 16:33:25 CST)
- exon (Thu Feb 10 2005 - 13:05:06 CST)
- Alexander Klimov (Thu Feb 10 2005 - 04:59:07 CST)
- Michael Howard (Thu Feb 10 2005 - 00:04:56 CST)
- Michael Howard (Wed Feb 09 2005 - 23:06:33 CST)
- Michael Silk (Wed Feb 09 2005 - 23:36:22 CST)
- Olaf Reitmaier (Wed Feb 09 2005 - 23:10:58 CST)
- Olaf Reitmaier (Wed Feb 09 2005 - 23:30:36 CST)
- Michael Silk (Wed Feb 09 2005 - 23:12:33 CST)
- Michael Silk (Wed Feb 09 2005 - 21:12:02 CST)
- Nick Seward (Wed Feb 09 2005 - 15:17:47 CST)
- Michael Silk (Wed Feb 09 2005 - 17:16:48 CST)
- Michael Howard (Wed Feb 09 2005 - 17:14:45 CST)
- Benjamin Livshits (Wed Feb 09 2005 - 16:23:04 CST)
- Randy (Wed Feb 09 2005 - 16:23:16 CST)
- Nick Seward (Wed Feb 09 2005 - 06:37:20 CST)
- Richard Moore (Wed Feb 09 2005 - 10:13:17 CST)
- Kevin Conaway (Wed Feb 09 2005 - 08:36:49 CST)
- Ashish Popli (Tue Feb 08 2005 - 21:49:30 CST)
- Antoine Martin (Mon Feb 07 2005 - 18:36:41 CST)
- Valdis.Kletnieksvt.edu (Mon Feb 07 2005 - 20:13:50 CST)
- Dimitris Mistriotis (Mon Feb 07 2005 - 18:10:05 CST)
- Kevin Conaway (Mon Feb 07 2005 - 13:41:35 CST)
- Erez Metula (Tue Feb 01 2005 - 01:09:28 CST)
- Scovetta, Michael V (Mon Jan 31 2005 - 11:45:24 CST)
- Jaime Spicciati (Mon Jan 31 2005 - 08:30:53 CST)
- Alexander Klimov (Mon Jan 31 2005 - 03:01:09 CST)
- Erez Metula (Mon Jan 31 2005 - 00:59:41 CST)
- Steve Taylor (Thu Jan 27 2005 - 08:58:28 CST)
- Sean Radford (Tue Jan 25 2005 - 13:06:07 CST)
- Valdis.Kletnieksvt.edu (Tue Jan 25 2005 - 10:41:13 CST)
- Alexander Klimov (Tue Jan 25 2005 - 10:33:07 CST)
- chaim moshe (Tue Jan 25 2005 - 03:18:15 CST)
secure storage of sensitive data in J2EE [Virus Checked]
- graham.colesretail-logic.com (Wed Feb 09 2005 - 11:09:36 CST)
Security Webcast Series
- Evans, Arian (Mon Feb 07 2005 - 16:34:10 CST)
- JoeStagner (Sat Feb 05 2005 - 08:31:09 CST)
- Evans, Arian (Thu Feb 03 2005 - 17:51:18 CST)
- Bit Rider (Wed Feb 02 2005 - 19:44:06 CST)
- JoeStagner (Wed Feb 02 2005 - 16:45:30 CST)
Smart card proposal
- Kevin Kadow (Wed Feb 16 2005 - 00:20:38 CST)
- Rogan Dawes (Thu Feb 03 2005 - 07:59:06 CST)
- Lyal Collins (Wed Feb 02 2005 - 17:46:55 CST)
- Glenn_Everhartbankone.com (Wed Feb 02 2005 - 11:12:37 CST)
- Miguel Ruiz Velasco Sobrino (Mon Jan 31 2005 - 13:06:05 CST)
- Lyal Collins (Fri Jan 28 2005 - 16:34:11 CST)
- Koh Gim Leng (Thu Jan 27 2005 - 21:10:30 CST)
- maburnssafenet-inc.com (Tue Jan 25 2005 - 15:19:03 CST)
- DE Gustafson (Thu Jan 27 2005 - 12:11:09 CST)
- maburnssafenet-inc.com (Tue Jan 25 2005 - 14:58:11 CST)
- Ofer Shezaf (Tue Jan 25 2005 - 15:26:45 CST)
- Richard M. Smith (Tue Jan 25 2005 - 15:45:52 CST)
- Ofer Shezaf (Tue Jan 25 2005 - 15:01:07 CST)
- McAllister, Andrew (Tue Jan 25 2005 - 09:11:56 CST)
- Rogan Dawes (Tue Jan 25 2005 - 04:51:11 CST)
- Rogan Dawes (Tue Jan 25 2005 - 01:28:32 CST)
- Hugo Fortier (Mon Jan 24 2005 - 21:42:49 CST)
- Richard M. Smith (Mon Jan 24 2005 - 18:58:06 CST)
- Hugo Fortier (Mon Jan 24 2005 - 19:29:46 CST)
- maburnssafenet-inc.com (Mon Jan 24 2005 - 18:26:33 CST)
- Rogan Dawes (Mon Jan 24 2005 - 14:39:08 CST)
- Hugo Fortier (Mon Jan 24 2005 - 12:19:35 CST)
- Rishi Pande (Mon Jan 24 2005 - 11:42:03 CST)
- Richard M. Smith (Mon Jan 24 2005 - 06:27:54 CST)
- Rogan Dawes (Mon Jan 24 2005 - 02:00:04 CST)
- Lyal Collins (Mon Jan 24 2005 - 01:47:21 CST)
- Michael Silk (Sun Jan 23 2005 - 22:49:51 CST)
- Rogan Dawes (Wed Jan 19 2005 - 04:47:11 CST)
Software security specifications
- Andrew van der Stock (Wed Feb 23 2005 - 21:46:02 CST)
- Angelo Perniola (Tue Feb 22 2005 - 10:31:53 CST)
- i.matildegmail.com (Tue Feb 22 2005 - 09:53:10 CST)
- udayan pathak (Tue Feb 22 2005 - 01:04:38 CST)
- Jeff Williams (Mon Feb 21 2005 - 23:22:40 CST)
- i.matildegmail.com (Mon Feb 21 2005 - 10:17:01 CST)
Solutions, Results, and Comments - Was [ISA Server and SQL Injection]
- Jeff Williams (Tue Mar 01 2005 - 10:46:16 CST)
- Jeremiah Grossman (Mon Feb 28 2005 - 13:54:53 CST)
- Jeff Williams (Mon Feb 28 2005 - 11:12:48 CST)
- Jeremiah Grossman (Mon Feb 28 2005 - 10:28:31 CST)
- Michael Silk (Sun Feb 27 2005 - 16:52:51 CST)
- Jeremiah Grossman (Thu Feb 24 2005 - 12:37:06 CST)
- Jeff Williams (Wed Feb 23 2005 - 23:36:28 CST)
- David (Wed Feb 23 2005 - 22:18:12 CST)
- Jeremiah Grossman (Tue Feb 22 2005 - 16:24:38 CST)
SQL injection
- nummish0x90.org (Wed Jan 19 2005 - 08:33:04 CST)
- Cory Foy (Wed Jan 19 2005 - 07:33:12 CST)
- Serg Belokamen (Wed Jan 19 2005 - 05:58:35 CST)
- exon (Wed Jan 19 2005 - 03:11:05 CST)
- John McGuire (Wed Jan 19 2005 - 03:07:47 CST)
- Josh Zlatin-Amishav (Wed Jan 19 2005 - 02:47:49 CST)
- James Riden (Wed Jan 19 2005 - 01:34:16 CST)
- Francesco (Mon Jan 17 2005 - 00:33:50 CST)
SQL Injection problem
- Asim Shaikh (Sun Mar 13 2005 - 13:13:36 CST)
state management by client IP address for Web App Sessions
- Evans, Arian (Fri Feb 25 2005 - 16:50:46 CST)
storing SSNs, CCNs, password in the DB
- Wall, Kevin (Tue Mar 01 2005 - 11:18:34 CST)
- McAllister, Andrew (Tue Mar 01 2005 - 09:23:23 CST)
- Jeff Robertson (Tue Mar 01 2005 - 08:31:59 CST)
- Joseph Miller (Mon Feb 28 2005 - 07:55:39 CST)
- Paul Johnston (Mon Feb 28 2005 - 03:57:37 CST)
- Alvin Oga (Mon Feb 28 2005 - 03:07:33 CST)
- Andrew van der Stock (Sun Feb 27 2005 - 22:25:57 CST)
- Francesco (Sun Feb 27 2005 - 20:08:09 CST)
- Adam Shostack (Sun Feb 27 2005 - 19:28:20 CST)
- Francesco (Sun Feb 27 2005 - 16:32:12 CST)
SV: force extention handling in IIS?
- Fredrik Hesse (Mon Feb 14 2005 - 03:02:56 CST)
SV: Java -> .NET RSA Encryption
- Fredrik Hesse (Wed Mar 30 2005 - 00:59:25 CST)
SyScAN'05 CFP
- organisersyscan.org (Mon Jan 17 2005 - 19:06:22 CST)
Two questions: FAQ and OWASP ASAC
- Bob Auger (Fri Jan 14 2005 - 09:54:30 CST)
- Rogan Dawes (Fri Jan 14 2005 - 09:36:31 CST)
- Wall, Kevin (Mon Jan 10 2005 - 22:18:44 CST)
Unicode security discussion paper
- Andrew van der Stock (Mon Mar 14 2005 - 18:39:46 CST)
Update: OWASP AppSec Europe 2005, April 9-10
- Dave Wichers (Thu Mar 10 2005 - 14:54:11 CST)
- Dave Wichers (Mon Feb 07 2005 - 13:30:42 CST)
Using Google Desktop Search for remote system monitoring
- Abe Usher (Sat Jan 08 2005 - 16:54:32 CST)
Using SPNEGO for web SSO
- listsdawes.za.net (Mon Feb 28 2005 - 03:33:26 CST)
- Saqib Ali (Sun Feb 27 2005 - 20:36:55 CST)
- Burak DAYIOGLU (Fri Feb 25 2005 - 00:47:40 CST)
Vulnerability statistics
- Michael Howard (Fri Jan 14 2005 - 15:56:29 CST)
- Steven M. Christey (Mon Jan 10 2005 - 19:09:22 CST)
- Adam Shostack (Fri Jan 07 2005 - 18:10:42 CST)
- Michael Howard (Fri Jan 07 2005 - 13:18:41 CST)
- Jeremiah Grossman (Fri Jan 07 2005 - 11:38:31 CST)
- Benjamin Livshits (Thu Jan 06 2005 - 15:55:53 CST)
WASC-Articles: "The 80/20 Rule for Web Application Security"
- robertwebappsec.org (Mon Jan 31 2005 - 11:35:07 CST)
WASC-Articles: 'The Insecure Indexing Vulnerability - Attacks Against Local Search Engines' By Amit Klein
- robertwebappsec.org (Mon Feb 28 2005 - 09:53:44 CST)
web application audit ideas needed
- exon (Mon Feb 14 2005 - 03:23:17 CST)
- learn lids (Sun Feb 13 2005 - 23:51:56 CST)
Web Scanners
- Tonie (Thu Mar 03 2005 - 22:52:18 CST)
- blad3 (Thu Mar 03 2005 - 15:56:06 CST)
- El C0chin0 (Wed Mar 02 2005 - 17:49:25 CST)
Web Scanners & Acunetix
- Evans, Arian (Fri Mar 11 2005 - 17:39:15 CST)
Web Sec Conference in Europe: Websec 2005 in London, Mar 14 to 18, 2005
- David Rhoades (Fri Feb 11 2005 - 10:39:02 CST)
Web security breach changes the lives of 119 people
- psiphoninfosecguides.com (Tue Mar 29 2005 - 13:14:06 CST)
- Cory Foy (Tue Mar 29 2005 - 09:20:08 CST)
- Michael Silk (Mon Mar 28 2005 - 18:17:41 CST)
- Ed Tracy Aspect Security (Mon Mar 28 2005 - 14:36:47 CST)
- Peter Conrad (Wed Mar 23 2005 - 03:29:37 CST)
- ed.tracyaspectsecurity.com (Mon Mar 21 2005 - 09:46:42 CST)
- Jeff Williams (Fri Mar 18 2005 - 15:20:49 CST)
- El C0chin0 (Mon Mar 14 2005 - 15:52:37 CST)
- roger.franksmiddleeastadvertising.com (Sun Mar 13 2005 - 15:39:07 CST)
- Bill Nichols (Fri Mar 11 2005 - 07:29:48 CST)
- Kim Dyer (Thu Mar 10 2005 - 06:19:28 CST)
- Griffiths, Ian (Thu Mar 10 2005 - 04:36:27 CST)
- Jason Coombs (Wed Mar 09 2005 - 18:35:06 CST)
- Altheide, Cory B. (IARC) (Wed Mar 09 2005 - 18:26:29 CST)
- christopherbaus.net (Wed Mar 09 2005 - 18:25:10 CST)
- Richard M. Smith (Tue Mar 08 2005 - 10:28:29 CST)
Web site cookie overload?
- Alexander Klimov (Tue Jan 25 2005 - 11:53:41 CST)
- Nick Seward (Tue Jan 25 2005 - 03:36:17 CST)
- Alexander Klimov (Tue Jan 25 2005 - 08:28:19 CST)
- Richard M. Smith (Mon Jan 24 2005 - 13:53:56 CST)
- Griffiths, Ian (Mon Jan 24 2005 - 04:02:03 CST)
- Nick (Wed Jan 19 2005 - 02:26:58 CST)
- Richard M. Smith (Mon Jan 17 2005 - 20:59:30 CST)
Web sites keep making the same mistakes over and over again
- Richard M. Smith (Wed Feb 23 2005 - 08:57:25 CST)
Webmail Service vulnerabilities
- Scovetta, Michael V (Tue Jan 04 2005 - 15:29:45 CST)
- Tim Brown (Wed Jan 05 2005 - 03:11:10 CST)
- Moritz Naumann (Tue Jan 04 2005 - 20:17:26 CST)
- Dimitri Borjac (Tue Jan 04 2005 - 07:26:48 CST)
What is more secure?
- Devdas Bhagat (Sat Mar 05 2005 - 07:25:54 CST)
- Chris Thorp (Mon Feb 28 2005 - 09:10:53 CST)
- Harry de Grote (Mon Feb 28 2005 - 08:24:31 CST)
- Tomas (Sun Feb 27 2005 - 20:04:26 CST)
- Alvin Oga (Sun Feb 27 2005 - 16:55:22 CST)
- blackhat (Sun Feb 27 2005 - 15:57:47 CST)
- Tomas (Thu Feb 24 2005 - 03:05:08 CST)
White paper: Authentication and Session Management on the Web
- Paul Johnston (Mon Feb 07 2005 - 06:39:19 CST)
Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's Web Applications"
- Florian Weimer (Fri Jan 07 2005 - 17:47:21 CST)
- Weiler, Jim (Fri Jan 07 2005 - 13:27:16 CST)
Why eBanking is Bad for your Bank Balance - new paper
- peterebankingsecurity.com (Sun Mar 06 2005 - 09:39:15 CST)
XSS or HTTP Response Splitting?
- Amit Klein (AKsecurity) (Tue Jan 04 2005 - 15:11:48 CST)

Last message date: Thu Mar 31 2005 - 12:37:35 CST
Archived on: Thu Mar 31 2005 - 12:37:38 CST

512 messages sorted by: [ author ] [ date ] [ thread ]