NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > WWW-Mobile-Code> 2008-q1

91 messages sorted by: [ author ] [ date ] [ thread ]

Starting: Sun Jan 06 2008 - 20:46:19 CST
Ending: Fri Mar 28 2008 - 09:41:34 CDT

[MSA01240108] IE7 Transfer-Encoding: chunked allows Request Splitting/Smuggling.
- Minded Security Research Labs (Fri Mar 21 2008 - 06:06:45 CDT)
[MSA02240108] IE7 allows overwriting of several headers leading to Http request Splitting and smuggling.
- Minded Security Research Labs (Fri Mar 21 2008 - 06:08:43 CDT)
[WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money?
- sankalpa h (Thu Jan 17 2008 - 09:07:44 CST)
- Ofer Shezaf (Wed Jan 16 2008 - 10:48:49 CST)
- Ryan Barnett (Sun Jan 13 2008 - 23:53:25 CST)
- Henry Troup (Sun Jan 13 2008 - 21:03:22 CST)
- Ryan Barnett (Sun Jan 13 2008 - 15:42:05 CST)
- Ofer Shezaf (Sun Jan 13 2008 - 06:35:55 CST)
- Ivan Ristic (Sun Jan 13 2008 - 03:54:23 CST)
- Ryan Barnett (Sat Jan 12 2008 - 16:22:10 CST)
AJAX Concept Question
- Jason Karlin (Thu Feb 21 2008 - 22:32:29 CST)
- Peter Conrad (Fri Feb 22 2008 - 02:16:14 CST)
- Charles Miller (Thu Feb 21 2008 - 22:17:34 CST)
- Mat (Thu Feb 21 2008 - 21:15:50 CST)
Apache mod_negotiation Xss and Http Response Splitting
- Minded Security Research Labs (Tue Jan 22 2008 - 16:16:09 CST)
AW: post vulnerability scenario
- Martin Muench (Wed Mar 12 2008 - 09:42:16 CDT)
AW: web application scanning tool - any unsecure demo sites out t here to run them against?
- Martin Muench (Wed Mar 19 2008 - 07:56:18 CDT)
Black Hat Announcements: New CFP system and Japan '08 confirmed
- jmoss (Fri Mar 14 2008 - 17:56:57 CDT)
CanSecWest 2008 Mar 26-28
- Dragos Ruiu (Fri Feb 22 2008 - 05:09:24 CST)
CanSecWest 2008 PWN2OWN - Mar 26-28
- Dragos Ruiu (Thu Mar 20 2008 - 23:24:54 CDT)
Certification for Web Application Security Professionals
- Anurag Agarwal (Thu Feb 21 2008 - 16:09:40 CST)
CSRF attack in Firefox
- Ali, Saqib (Tue Mar 18 2008 - 12:00:15 CDT)
- Jamie Riden (Tue Mar 18 2008 - 11:01:15 CDT)
- Vishal Garg (Tue Mar 18 2008 - 09:46:50 CDT)
Encrypted cookies
- Ron (Tue Jan 15 2008 - 16:07:37 CST)
- Orlin Gueorguiev (Thu Jan 10 2008 - 18:17:35 CST)
- Andy Steingruebl (Thu Jan 10 2008 - 17:46:53 CST)
- Rico Secada (Thu Jan 10 2008 - 16:39:52 CST)
- Brokken, Allen P. (Thu Jan 10 2008 - 15:02:01 CST)
- Rico Secada (Thu Jan 10 2008 - 16:18:08 CST)
- Lucas Oman (Thu Jan 10 2008 - 15:13:45 CST)
- Andy Steingruebl (Thu Jan 10 2008 - 15:43:43 CST)
- Andrew van der Stock (Thu Jan 10 2008 - 16:13:19 CST)
- Ron (Thu Jan 10 2008 - 10:26:08 CST)
extra dot on domain name gives different site
- Javier Fernandez-Sanguino (Fri Mar 07 2008 - 11:49:38 CST)
- Robin Wood (Sat Jan 26 2008 - 12:07:33 CST)
- Eric Marden (Fri Jan 25 2008 - 22:12:51 CST)
- Robert Hajime Lanning (Fri Jan 25 2008 - 18:02:24 CST)
- Robin Wood (Wed Jan 23 2008 - 05:52:57 CST)
IIS 6 SQL Injection Prevention ISAPI (GNU License)
- Rodney Viana (Plenux) (Wed Feb 13 2008 - 08:53:32 CST)
Insomnia: Tool Release - InsomniaShell.aspx
- Brett Moore (Mon Feb 11 2008 - 20:11:25 CST)
New search engine for exploits
- Security Basic (Thu Jan 17 2008 - 13:12:25 CST)
OpenID and the web
- Chris Grove (Thu Mar 27 2008 - 18:02:05 CDT)
- baldr (Thu Mar 27 2008 - 17:29:59 CDT)
- Jeremiah Cornelius (Thu Mar 27 2008 - 12:23:44 CDT)
- Jeremiah Cornelius (Thu Mar 27 2008 - 12:23:44 CDT)
- baldr (Thu Mar 27 2008 - 17:29:59 CDT)
- Pete Jansson (Thu Mar 27 2008 - 12:01:49 CDT)
- Calderon, Juan Carlos (GE, Corporate, consultant) (Thu Mar 27 2008 - 10:31:03 CDT)
- Lucas Oman (Thu Mar 27 2008 - 10:46:31 CDT)
- David Wall (Thu Mar 27 2008 - 10:30:37 CDT)
- Calderon, Juan Carlos (GE, Corporate, consultant) (Thu Mar 27 2008 - 10:31:03 CDT)
- Razi Shaban (Thu Mar 27 2008 - 11:06:47 CDT)
- Jeff Robertson (Thu Mar 27 2008 - 09:49:42 CDT)
- Razi Shaban (Thu Mar 27 2008 - 06:47:29 CDT)
- Babu.N (Thu Mar 27 2008 - 00:08:21 CDT)
- Eric Marden (Tue Mar 25 2008 - 20:23:08 CDT)
- Adrian Migraso (Tue Mar 25 2008 - 18:50:46 CDT)
- David Wall (Tue Mar 25 2008 - 16:09:02 CDT)
- David Wall (Tue Mar 25 2008 - 12:48:17 CDT)
- Steven Rakick (Sun Mar 23 2008 - 07:15:21 CDT)
OWASP Asia Pacific & Australia Application Security Conference FEB 2008
- Justin Derry (Wed Jan 09 2008 - 17:36:18 CST)
PHP Security
- Greg Song (Wed Mar 19 2008 - 00:02:45 CDT)
- Eric Marden (Tue Mar 18 2008 - 20:41:12 CDT)
- Eduardo Tongson (Tue Mar 18 2008 - 19:09:27 CDT)
- Greg Song (Tue Mar 18 2008 - 18:50:28 CDT)
- Greg Song (Mon Mar 17 2008 - 18:58:49 CDT)
Plone CMS Security Research: the Art of Plowning
- Adrian Pastor (Thu Mar 13 2008 - 12:42:28 CDT)
post vulnerability scenario
- davemitchmailinator.com (Thu Mar 06 2008 - 22:52:11 CST)
Release of webshag 1.00!
- webshagscrt.ch (Thu Mar 20 2008 - 03:48:32 CDT)
SQL Injection: Issue with UNION SELECT ALL
- Calderon, Juan Carlos (GE, Corporate, consultant) (Wed Jan 09 2008 - 11:17:13 CST)
- Joseph McCray (Wed Jan 09 2008 - 06:02:28 CST)
sqlninja 0.2.2 released
- A. R. (Mon Jan 21 2008 - 08:33:27 CST)
Thanks to all, ExploitSearch in Top5 security must-have
- Security Basic (Tue Feb 12 2008 - 23:25:09 CST)
Tool to test SAML artifacts and assertions
- ' =JeffH ' (Fri Feb 08 2008 - 13:08:40 CST)
- Philip Cox (Tue Jan 29 2008 - 12:57:02 CST)
Troopers08 Security Conference, 23/24 April (Munich/Germany)
- Enno Rey (Sat Mar 15 2008 - 15:42:51 CDT)
web application scanning tool - any unsecure demo sites out there to run them against?
- Chris Grove (Tue Mar 18 2008 - 17:37:20 CDT)
- Darren Webb (Tue Mar 18 2008 - 12:19:14 CDT)
- bigbert007 (Tue Mar 18 2008 - 12:39:56 CDT)
- Thakrar, Saurabh (Tue Mar 18 2008 - 12:28:31 CDT)
- RUI PEREIRA - WCG (Tue Mar 18 2008 - 09:34:47 CDT)
- bigbert007 (Tue Mar 18 2008 - 09:02:44 CDT)
Web Application Security
- Ofer Shezaf (Wed Mar 12 2008 - 01:12:26 CDT)
- Jayaraman, Anand X. (Tue Mar 11 2008 - 13:53:52 CDT)
- Zack Peters (Tue Mar 11 2008 - 12:41:16 CDT)
- Javier Fernandez-Sanguino (Fri Mar 07 2008 - 11:52:35 CST)
- mahendra_ynyahoo.com (Tue Jan 22 2008 - 23:56:31 CST)
Web Services Security Training Course (NYC - March 10 & 11, 2008)
- Peter Soderling (Mon Feb 25 2008 - 08:50:43 CST)
Welcome to a new year at WebAppSec
- Andrew van der Stock (Sun Jan 06 2008 - 20:45:40 CST)
wfuzz v1.4 - The web bruteforcer
- Christian Martorella (Thu Jan 24 2008 - 16:32:10 CST)

Last message date: Fri Mar 28 2008 - 09:41:34 CDT
Archived on: Fri Mar 28 2008 - 09:41:35 CDT

91 messages sorted by: [ author ] [ date ] [ thread ]