Network Security Archives

December 31, 2004

Re: Web Application Security Testing Procedures, Saqib Ali, 12:22

December 30, 2004

Re: Web Application Security Testing Procedures, Adam Tuliper, 19:06
RE: Web Application Security Testing Procedures, Jeff Fedor, 18:55
Re: Web Application Security Testing Procedures, Hernán M. Racciatti, 15:54
RE: Obfuscation of JSPs?, Burke, Charles, 14:03
Web Application Security Testing Procedures, Lecia McCalla, 13:53
RE: The Santy worm and Application Security, xxradar, 13:53

December 28, 2004

The Santy worm and Application Security, Ofer Shezaf, 13:43
New release of WebScarab, Rogan Dawes, 13:43
Re: Article - A solution to phishing, Michael Silk, 13:43
RE: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Evans, Arian, 13:43
RE: (robust web apps) Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's Web Applications", Evans, Arian, 13:43

December 23, 2004

Re: Obfuscation of JSPs?, Alexander Klimov, 13:13
Re: Article - A solution to phishing, Marco Aurelio dos Santos, 13:13
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Eran Tromer, 13:13
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Augusto Paes de Barros, 13:13
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Eran Tromer, 13:03
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's Web Applications", Florian Weimer, 13:03
Re: Obfuscation of JSPs?, Dave Ockwell-Jenner, 13:03
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's Web Applications", Florian Weimer, 13:03
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Florian Weimer, 12:53
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Florian Weimer, 12:53
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Florian Weimer, 12:53
Re: Article - A solution to phishing, Marco Aurelio dos Santos, 12:53
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Florian Weimer, 12:43
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Florian Weimer, 12:43
RE: (ip session tracking) Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Evans, Arian, 12:43
RE: SQL injection (no single quotes used), Juan Carlos, 12:43
RE: (ip validation) Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Evans, Arian, 12:43

December 22, 2004

Re: Article - A solution to phishing, Rogan Dawes, 22:06
RE: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Scovetta, Michael V, 20:25
RE: Critical New Web Application Vulnerability Alert BOB23203115, Arian J. Evans, 15:53
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Jeff Williams, 15:03
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Shade, 14:53
RE: Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's Web Applications", Evans, Arian, 14:43
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Sverre H. Huseby, 14:43
Re: Article - A solution to phishing, exon, 14:32
Obfuscation of JSPs?, Dean Saxe, 14:32
Eleven - Fast and Secure Web App development, focus, 14:22
Re: SQL injection (no single quotes used), Amit Klein (AKsecurity), 14:22
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Joseph Miller, 14:22
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Elihu Smails, 14:12
RE: SQL injection (no single quotes used), Michael Silk, 14:12
RE: SQL injection (no single quotes used), Juan Carlos, 14:12
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Sverre H. Huseby, 14:12

December 21, 2004

RE: SQL injection (no single quotes used), Scovetta, Michael V, 01:55
Re: Is this exploitable?.., Tim, 01:35
Re: SQL injection (no single quotes used), Sverre H. Huseby, 01:35
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's Web Applications", Ben Timby, 01:35
RE: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Mark Burnett, 01:25
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Elihu Smails, 01:25
RE: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Evans, Arian, 01:25
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Eran Tromer, 01:25
How to set setcookie-2 for port option., Senthilkumar Balasubramanian, 01:15
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Joseph Miller, 01:15
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Shade, 01:15
Re: Article - A solution to phishing, Joseph Miller, 01:15
RE: [in] Warning about accessing / attacking phising and spoofing sites, Curt Purdy, 01:15
Critical New Web Application Vulnerability Alert BOB23203115, Arian J. Evans, 01:15

December 20, 2004

RE: SQL injection (no single quotes used), Juan Carlos, 15:51
RE: SQL injection (no single quotes used), Mike Andrews, 15:01
RE: Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's Web Applications", Noah Gray, 07:16
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Sverre H. Huseby, 07:16
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Sverre H. Huseby, 07:16
RE: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Yvan G.J. Boily, 07:06
Re: Is this exploitable?.., Stephen de Vries, 07:06
RE: Is this exploitable?.., Benjamin Livshits, 07:06
Re: Cookies sent to different ports?, CFW, 07:06
RE: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Thomas Schreiber, 06:56
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Philippe P., 06:55
Re: Is this exploitable?.., Peter Conrad, 06:55
Re: Article - A solution to phishing, exon, 06:55
Re: Is this exploitable?.., Peter Conrad, 06:55

December 19, 2004

Warning about accessing / attacking phising and spoofing sites, Amir Herzberg, 18:35

December 16, 2004

RE: Cookies sent to different ports?, Michael Silk, 22:04
Re: SQL injection (no single quotes used), PD9 Software, 22:04
Re: Cookies sent to different ports?, Martin Mačok, 22:04
Re: Article - A solution to phishing, Ian, 22:04
RE: SQL injection (no single quotes used), Brett Moore, 22:04
RE: SQL injection (no single quotes used), Michael Howard, 22:04
Is this exploitable?.., Benjamin Livshits, 22:04
Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Thomas Schreiber, 22:04
OWASP NYC Chapter Meeting, Stan Guzik, 22:04
Re: SQL injection (no single quotes used), Adam Tuliper, 22:04
RE: SQL injection (no single quotes used), Michael Silk, 22:04
Cookies sent to different ports?, CFW, 22:04
Re: SQL injection (no single quotes used), Juan Carlos, 22:04
OWASP Testing Project, Phase One Release, OWASP Testing Project, 22:04
RE: SQL injection (no single quotes used), Mutallip Ablimit, 22:04
Re: SQL injection (no single quotes used), Olivier G. Gaumond, 22:04
Re: Article - A solution to phishing, Adam Tuliper, 22:04
RE: Article - A solution to phishing, Christopher Canova, 22:02
Re: Deface a web site, Rafael San Miguel Carrasco, 22:02
SQL injection (no single quotes used), Juan Carlos Calderon, 22:02
Re: PHP Easter Eggs, James Barkley, 22:02
Re: Article - A solution to phishing, Michael Silk, 22:02
Re: SSO & 2FA deployments, Julen Cordon, 22:01

December 02, 2004

RE: Account Lockouts, Alexander Klimov, 07:19
Re: Account Lockouts, Valdis . Kletnieks, 06:26
RE: Account Lockouts, David Robert, 06:15
Re: PHP Easter Eggs, Rick Crelia, 05:45
Re: SSO & 2FA deployments, dc, 05:45
Web Application Security Consortium 'Guest Articles' Call for Papers, robert, 05:45
RE: SSO & 2FA deployments, Gary Everekyan, 05:45
Deface a web site, Leung, Annie LDB:EX, 05:45
Absinthe 1.1 - Blind SQL Injection Tool Released, nummish, 05:45
RE: SSO & 2FA deployments, Rishi Pande, 05:45
Re: PHP Easter Eggs, Antonio Varni, 05:45
Re: IE6 Vulnerability - Local File Detection, RSnake, 05:34
Re: Account Lockouts, Alexander Klimov, 04:29
RE: Account Lockouts, Cunningham, Andy, 04:29
RE: Account Lockouts, Skander Ben Mansour, 03:20
Re: SSO & 2FA deployments, Earl . Perkins, 03:19
RE: JAVA Classes - Recompilation condition errors!!, V. Poddubnyy, 03:19
Re: Account Lockouts, Michael Silk, 03:09
RE: PHP Easter Eggs, Chuck Brockman, 00:23
Re: Article - A solution to phishing, Rogan Dawes, 00:23
SSO & 2FA deployments, Daniel, 00:23
RE: Account Lockouts, Stephen de Vries, 00:23
JAVA Classes - Recompilation condition errors!!, George Fekkas, 00:23
Re: Blind cross-domain POST/GET requests, Saqib . N . Ali, 00:23
Re: PHP Easter Eggs, Griffiths, Ian, 00:23
RE: Account Lockouts, Matt Fisher, 00:23
Re: Account Lockouts, Mark Burnett, 00:12
Re: Account Lockouts, Valdis . Kletnieks, 00:01
Re: Account Lockouts, Jason Coombs, 00:00
Re: Account Lockouts, Haroon Meer, 00:00

December 01, 2004

Re: Account Lockouts, Valdis . Kletnieks, 23:38
Re: Account Lockouts, Valdis . Kletnieks, 23:38
Re: Account Lockouts, Jason Coombs, 23:38
RE: Account Lockouts, Eric Coleman, 23:28
RE: Account Lockouts, Martin Dion, 23:28
Re: Account Lockouts, Griffiths, Ian, 23:28
RE: Account Lockouts, Dean Saxe, 23:28
Re: Account Lockouts, Valdis . Kletnieks, 23:17
Re: Account Lockouts, Michael Silk, 23:17
RE: Account Lockouts, Tarun Bansal, 23:07
RE: Account Lockouts, WebAppSecurity [Technicalinfo.net], 23:07
Re: Account Lockouts, Michael Silk, 22:56
Re: Account Lockouts, Kalyan Varma, 22:56
RE: Account Lockouts, Blake Frantz, 22:56
Re: Account Lockouts, Mark Burnett, 22:56
Re: Account Lockouts, Valdis . Kletnieks, 22:56
Re: Account Lockouts, Michael Silk, 22:45
RE: Account Lockouts, Eric Coleman, 22:45
Re: Account Lockouts, Burak Bilen, 22:34
Re: Account Lockouts, Stephen de Vries, 22:34
RE: Account Lockouts, Michael Silk, 22:34
Re: Account Lockouts, Alexander Klimov, 22:34
Re: PHP Easter Eggs, Jimi Thompson, 22:34
Re: Solutions to phishing and to site spoofing, Michael Silk, 22:34
RE: Blind cross-domain POST/GET requests, Andrew Moise, 22:34
RE: Account Lockouts, David LeBlanc, 22:34
Re: Article - A solution to phishing [Passmark], Jeremiah Grossman, 22:34
Re: Article - A solution to phishing, Robert Hajime Lanning, 22:34
Re: "data at rest", Tim, 22:34
Re: Article - A solution to phishing, Adam Shostack, 22:34
Re: Article - A solution to phishing, Jimi Thompson, 22:13
Re: Article - A solution to phishing, Adam Shostack, 22:13
RE: Solutions to phishing and to site spoofing, Michael Silk, 22:03
Account Lockouts, Harrison Gladden, 22:02
"data at rest", Eric Ilustrisimo, 22:02
Re: Blind cross-domain POST/GET requests, Saqib . N . Ali, 21:42
RE: PHP Easter Eggs, V. Poddubnyy, 21:15
RE: Blind cross-domain POST/GET requests, Scovetta, Michael V, 18:44
Re: Blind cross-domain POST/GET requests, Saqib . N . Ali, 18:04
Re: Hidden Form Field Tool, Rafael San Miguel Carrasco, 17:23
RE: Antwort: Re: Fwd: PHP Easter Eggs, Levenglick, Jeff, 17:13
Re: Article - A solution to phishing, Jeremiah Grossman, 17:13
Blind cross-domain POST/GET requests, Florian Weimer, 16:13
Re: PHP Easter Eggs, Paul Fierro, 16:02
Re: Betr.: Fwd: PHP Easter Eggs, exon, 15:52
RE: Antwort: Re: Fwd: PHP Easter Eggs, Scovetta, Michael V, 15:42
Antwort: Re: PHP Easter Eggs, Carsten Kuckuk, 02:45
Antwort: Re: Fwd: PHP Easter Eggs, Carsten Kuckuk, 02:45
RE: Article - A solution to phishing, WebAppSecurity [Technicalinfo.net], 02:45
RE: Article - A solution to phishing, Damhuis Anton, 02:45
Betr.: Fwd: PHP Easter Eggs, Philip Wagenaar, 02:45
Re: Fwd: PHP Easter Eggs, exon, 02:45
Solutions to phishing and to site spoofing, Amir Herzberg, 02:45
Black Hat CFPs now open: Europe and Asia, Jeff Moss, 02:45
Re: Article - A solution to phishing, Rogan Dawes, 02:45
RE: Article - A solution to phishing, Michael Silk, 02:45
RE: Of the three expensive vulnerability scanners, Tommy, 02:45
Computerworld article about web app firewalls, ban.marketing.bs, 02:45
RE: Article - A solution to phishing, Michael Silk, 02:45
OWASP WebGoat 3.5, Jeff Williams, 02:45
RE: Article - A solution to phishing, Dave Jevans, 02:45
Re: Fwd: PHP Easter Eggs, Saqib . N . Ali, 02:45
Re: PHP Easter Eggs, Harrison Gladden, 02:45
Re: PHP Easter Eggs, q q, 02:45
Re: Fwd: PHP Easter Eggs, RSnake, 02:45
Re: Fwd: PHP Easter Eggs, Harald Nesland, 02:44
RE: Article - A solution to phishing, WebAppSecurity [Technicalinfo.net], 02:44
RE: Article - A solution to phishing, Dave Jevans, 02:44