NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > WWW-Mobile-Code> 2008-q1

Most recent messages
91 messages sorted by: [ author ] [ date ] [ subject ]

Starting: Sun Jan 06 2008 - 20:46:19 CST
Ending: Fri Mar 28 2008 - 09:41:34 CDT

Welcome to a new year at WebAppSec Andrew van der Stock (Sun Jan 06 2008 - 20:45:40 CST)
SQL Injection: Issue with UNION SELECT ALL Joseph McCray (Wed Jan 09 2008 - 06:02:28 CST)
- RE: SQL Injection: Issue with UNION SELECT ALL Calderon, Juan Carlos (GE, Corporate, consultant) (Wed Jan 09 2008 - 11:17:13 CST)
OWASP Asia Pacific & Australia Application Security Conference FEB 2008 Justin Derry (Wed Jan 09 2008 - 17:36:18 CST)
Encrypted cookies Ron (Thu Jan 10 2008 - 10:26:08 CST)
- Re: Encrypted cookies Andrew van der Stock (Thu Jan 10 2008 - 16:13:19 CST)
- Re: Encrypted cookies Andy Steingruebl (Thu Jan 10 2008 - 15:43:43 CST)
- Re: Encrypted cookies Lucas Oman (Thu Jan 10 2008 - 15:13:45 CST)
- Re: Encrypted cookies Rico Secada (Thu Jan 10 2008 - 16:18:08 CST)
- RE: Encrypted cookies Brokken, Allen P. (Thu Jan 10 2008 - 15:02:01 CST)
- Re: Encrypted cookies Andy Steingruebl (Thu Jan 10 2008 - 17:46:53 CST)
- Re: Encrypted cookies Orlin Gueorguiev (Thu Jan 10 2008 - 18:17:35 CST)
- Fw: Re: Encrypted cookies Rico Secada (Thu Jan 10 2008 - 16:39:52 CST)
- Re: Fw: Re: Encrypted cookies Ron (Tue Jan 15 2008 - 16:07:37 CST)
Re: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money? Ryan Barnett (Sat Jan 12 2008 - 16:22:10 CST)
- Re: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money? Ivan Ristic (Sun Jan 13 2008 - 03:54:23 CST)
- Re: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money? Ryan Barnett (Sun Jan 13 2008 - 15:42:05 CST)
- Re: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money? Henry Troup (Sun Jan 13 2008 - 21:03:22 CST)
- Re: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money? Ryan Barnett (Sun Jan 13 2008 - 23:53:25 CST)
RE: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money? Ofer Shezaf (Sun Jan 13 2008 - 06:35:55 CST)
- RE: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money? Ofer Shezaf (Wed Jan 16 2008 - 10:48:49 CST)
- RE: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money? sankalpa h (Thu Jan 17 2008 - 09:07:44 CST)
New search engine for exploits Security Basic (Thu Jan 17 2008 - 13:12:25 CST)
sqlninja 0.2.2 released A. R. (Mon Jan 21 2008 - 08:33:27 CST)
wfuzz v1.4 - The web bruteforcer Christian Martorella (Thu Jan 24 2008 - 16:32:10 CST)
Apache mod_negotiation Xss and Http Response Splitting Minded Security Research Labs (Tue Jan 22 2008 - 16:16:09 CST)
Web Application Security mahendra_ynyahoo.com (Tue Jan 22 2008 - 23:56:31 CST)
- Re: Web Application Security Javier Fernandez-Sanguino (Fri Mar 07 2008 - 11:52:35 CST)
- Re: Web Application Security Zack Peters (Tue Mar 11 2008 - 12:41:16 CDT)
- RE: Web Application Security Jayaraman, Anand X. (Tue Mar 11 2008 - 13:53:52 CDT)
- RE: Web Application Security Ofer Shezaf (Wed Mar 12 2008 - 01:12:26 CDT)
extra dot on domain name gives different site Robin Wood (Wed Jan 23 2008 - 05:52:57 CST)
- Re: extra dot on domain name gives different site Robert Hajime Lanning (Fri Jan 25 2008 - 18:02:24 CST)
- Re: extra dot on domain name gives different site Eric Marden (Fri Jan 25 2008 - 22:12:51 CST)
- Re: extra dot on domain name gives different site Robin Wood (Sat Jan 26 2008 - 12:07:33 CST)
- Re: extra dot on domain name gives different site Javier Fernandez-Sanguino (Fri Mar 07 2008 - 11:49:38 CST)
Tool to test SAML artifacts and assertions Philip Cox (Tue Jan 29 2008 - 12:57:02 CST)
- Re: Tool to test SAML artifacts and assertions ' =JeffH ' (Fri Feb 08 2008 - 13:08:40 CST)
Insomnia: Tool Release - InsomniaShell.aspx Brett Moore (Mon Feb 11 2008 - 20:11:25 CST)
Thanks to all, ExploitSearch in Top5 security must-have Security Basic (Tue Feb 12 2008 - 23:25:09 CST)
IIS 6 SQL Injection Prevention ISAPI (GNU License) Rodney Viana (Plenux) (Wed Feb 13 2008 - 08:53:32 CST)
Certification for Web Application Security Professionals Anurag Agarwal (Thu Feb 21 2008 - 16:09:40 CST)
AJAX Concept Question Mat (Thu Feb 21 2008 - 21:15:50 CST)
- Re: AJAX Concept Question Charles Miller (Thu Feb 21 2008 - 22:17:34 CST)
- Re: AJAX Concept Question Peter Conrad (Fri Feb 22 2008 - 02:16:14 CST)
- RE: AJAX Concept Question Jason Karlin (Thu Feb 21 2008 - 22:32:29 CST)
CanSecWest 2008 Mar 26-28 Dragos Ruiu (Fri Feb 22 2008 - 05:09:24 CST)
Web Services Security Training Course (NYC - March 10 & 11, 2008) Peter Soderling (Mon Feb 25 2008 - 08:50:43 CST)
post vulnerability scenario davemitchmailinator.com (Thu Mar 06 2008 - 22:52:11 CST)
AW: post vulnerability scenario Martin Muench (Wed Mar 12 2008 - 09:42:16 CDT)
Plone CMS Security Research: the Art of Plowning Adrian Pastor (Thu Mar 13 2008 - 12:42:28 CDT)
Black Hat Announcements: New CFP system and Japan '08 confirmed jmoss (Fri Mar 14 2008 - 17:56:57 CDT)
Troopers08 Security Conference, 23/24 April (Munich/Germany) Enno Rey (Sat Mar 15 2008 - 15:42:51 CDT)
PHP Security Greg Song (Mon Mar 17 2008 - 18:58:49 CDT)
- Re: PHP Security Greg Song (Tue Mar 18 2008 - 18:50:28 CDT)
- Re: PHP Security Eduardo Tongson (Tue Mar 18 2008 - 19:09:27 CDT)
- Re: PHP Security Eric Marden (Tue Mar 18 2008 - 20:41:12 CDT)
- Re: PHP Security Greg Song (Wed Mar 19 2008 - 00:02:45 CDT)
web application scanning tool - any unsecure demo sites out there to run them against? bigbert007 (Tue Mar 18 2008 - 09:02:44 CDT)
- RE: Re: web application scanning tool - any unsecure demo sites out there to run them against? Thakrar, Saurabh (Tue Mar 18 2008 - 12:28:31 CDT)
- Re: web application scanning tool - any unsecure demo sites out there to run them against? bigbert007 (Tue Mar 18 2008 - 12:39:56 CDT)
- RE: web application scanning tool - any unsecure demo sites out there to run them against? Darren Webb (Tue Mar 18 2008 - 12:19:14 CDT)
- RE: web application scanning tool - any unsecure demo sites out there to run them against? Chris Grove (Tue Mar 18 2008 - 17:37:20 CDT)
CSRF attack in Firefox Vishal Garg (Tue Mar 18 2008 - 09:46:50 CDT)
- Re: CSRF attack in Firefox Jamie Riden (Tue Mar 18 2008 - 11:01:15 CDT)
- Re: CSRF attack in Firefox Ali, Saqib (Tue Mar 18 2008 - 12:00:15 CDT)
Fwd: Re: web application scanning tool - any unsecure demo sites out there to run them against? RUI PEREIRA - WCG (Tue Mar 18 2008 - 09:34:47 CDT)
AW: web application scanning tool - any unsecure demo sites out t here to run them against? Martin Muench (Wed Mar 19 2008 - 07:56:18 CDT)
Release of webshag 1.00! webshagscrt.ch (Thu Mar 20 2008 - 03:48:32 CDT)
[MSA01240108] IE7 Transfer-Encoding: chunked allows Request Splitting/Smuggling. Minded Security Research Labs (Fri Mar 21 2008 - 06:06:45 CDT)
[MSA02240108] IE7 allows overwriting of several headers leading to Http request Splitting and smuggling. Minded Security Research Labs (Fri Mar 21 2008 - 06:08:43 CDT)
CanSecWest 2008 PWN2OWN - Mar 26-28 Dragos Ruiu (Thu Mar 20 2008 - 23:24:54 CDT)
OpenID and the web Steven Rakick (Sun Mar 23 2008 - 07:15:21 CDT)
- Re: OpenID and the web David Wall (Tue Mar 25 2008 - 12:48:17 CDT)
- Re: OpenID and the web David Wall (Tue Mar 25 2008 - 16:09:02 CDT)
- Re: OpenID and the web Adrian Migraso (Tue Mar 25 2008 - 18:50:46 CDT)
- Re: OpenID and the web Eric Marden (Tue Mar 25 2008 - 20:23:08 CDT)
- Re: OpenID and the web Babu.N (Thu Mar 27 2008 - 00:08:21 CDT)
- Re: OpenID and the web Razi Shaban (Thu Mar 27 2008 - 06:47:29 CDT)
- Re: OpenID and the web Jeff Robertson (Thu Mar 27 2008 - 09:49:42 CDT)
- Re: OpenID and the web Razi Shaban (Thu Mar 27 2008 - 11:06:47 CDT)
- RE: OpenID and the web Calderon, Juan Carlos (GE, Corporate, consultant) (Thu Mar 27 2008 - 10:31:03 CDT)
- Re: OpenID and the web David Wall (Thu Mar 27 2008 - 10:30:37 CDT)
- RE: OpenID and the web Chris Grove (Thu Mar 27 2008 - 18:02:05 CDT)
- Re: OpenID and the web Lucas Oman (Thu Mar 27 2008 - 10:46:31 CDT)
- RE: OpenID and the web Calderon, Juan Carlos (GE, Corporate, consultant) (Thu Mar 27 2008 - 10:31:03 CDT)
- Re: OpenID and the web Pete Jansson (Thu Mar 27 2008 - 12:01:49 CDT)
- Re: OpenID and the web baldr (Thu Mar 27 2008 - 17:29:59 CDT)
- Re: OpenID and the web Jeremiah Cornelius (Thu Mar 27 2008 - 12:23:44 CDT)
- Re: OpenID and the web Jeremiah Cornelius (Thu Mar 27 2008 - 12:23:44 CDT)
- Re: OpenID and the web baldr (Thu Mar 27 2008 - 17:29:59 CDT)

Last message date: Fri Mar 28 2008 - 09:41:34 CDT
Archived on: Fri Mar 28 2008 - 09:41:35 CDT

91 messages sorted by: [ author ] [ date ] [ subject ]