Web Application Security (thread)

Livejournal opens unoffical XSS security challenge, Chris Varenhorst, 2006/01/31
SF new article announcement - Malicious Malware: attacking the attackers, part 1, Andrew van der Stock, 2006/01/31
AMD web forums trojaned by WMF exploit, Evans, Arian, 2006/01/31
Who's afraid of Mallory Wolf?, Ace123, 2006/01/30
- Re: Who's afraid of Mallory Wolf?, Andrew van der Stock, 2006/01/30
- Re: Who's afraid of Mallory Wolf?, Erwan Legrand, 2006/01/31
(Melbourne, Australia) SecureCon 2006, Andrew van der Stock, 2006/01/30
OWASP February Meetings, Andrew van der Stock, 2006/01/30
PHP based defacing tool usage continue to rise, Mark Ryan del Moral Talabis, 2006/01/30
- Re: PHP based defacing tool usage continue to rise, Christopher Kunz, 2006/01/30
  - Message not available
    - Re: PHP based defacing tool usage continue to rise, Zapotek, 2006/01/30
    - Re: PHP based defacing tool usage continue to rise, Mark Ryan del Moral Talabis, 2006/01/31
Cross Site Cooking, Michal Zalewski, 2006/01/28
- RE: Cross Site Cooking, Amit Klein (AKsecurity), 2006/01/29
  - [Full-disclosure] RE: Cross Site Cooking, Michal Zalewski, 2006/01/30
  - Re: Cross Site Cooking, Aman Raheja, 2006/01/31
- Re: Cross Site Cooking, john-secfocus, 2006/01/31
  - Re: Cross Site Cooking, Erwan Legrand, 2006/01/31
  - Re: Cross Site Cooking, Michal Zalewski, 2006/01/31
- RE: Cross Site Cooking, Evans, Arian, 2006/01/31
Oracle in war of words with security researcher, bugtraq, 2006/01/26
- Re: Oracle in war of words with security researcher, robert, 2006/01/27
  - Re: Oracle in war of words with security researcher, Byron Sonne, 2006/01/27
    - Re: [WEB SECURITY] Re: Oracle in war of words with security researcher, tlmacgi, 2006/01/27
    - Re: [WEB SECURITY] Re: Oracle in war of words with security researcher, Valkyrie, 2006/01/27
    - Re: [WEB SECURITY] Re: Oracle in war of words with security researcher, Andrew van der Stock, 2006/01/27
    - Re: [WEB SECURITY] Re: Oracle in war of words with security researcher, Paul Schmehl, 2006/01/28
Technical Note by Amit Klein: "XST Strikes Back", Amit Klein (AKsecurity), 2006/01/25
- Re: Technical Note by Amit Klein: "XST Strikes Back", Ivan Ristic, 2006/01/26
Update on: 2006 European OWASP AppSec Conference - May 30-31, 2006 near Brussels, Dave Wichers, 2006/01/23
Request for beta-testers: WebScarab, Rogan Dawes, 2006/01/23
(SiteGenerator) re: benchmarking the web app scanners, Dinis Cruz, 2006/01/22
Security Patterns Application Security Contest, sthalkidis, 2006/01/21
Pen-Testing a japanese site..., Dhruv Soi, 2006/01/21
benchmarking the web app scanners, thomas.jones, 2006/01/20
- Message not available
  - Re: benchmarking the web app scanners, Dinis Cruz, 2006/01/23
sql comment in access, Robin Wood, 2006/01/20
- Re: sql comment in access, John Bond, 2006/01/23
  - Message not available
    - Re: sql comment in access, John Bond, 2006/01/23
- sql comment in access, Robin Wood, 2006/01/21
  - Re: sql comment in access, Chuck, 2006/01/23
- RE: sql comment in access, Mark Atherton, 2006/01/23
  - Re: sql comment in access, Robin Wood, 2006/01/23
Web Application Security Contest - New Procedure, sthalkidis, 2006/01/20
- Re: Web Application Security Contest - New Procedure, Dean H. Saxe, 2006/01/20
- Re: Re: Web Application Security Contest - New Procedure, sthalkidis, 2006/01/21
- Re: Re: Re: Web Application Security Contest - New Procedure, sthalkidis, 2006/01/23
- Re: Re: Re: Re: Web Application Security Contest - New Procedure, sthalkidis, 2006/01/24
HITBSecConf2005 Videos Released !, Praburaajan, 2006/01/19
Administrivia: Faulty censorware and faulty anti-virus software, Andrew van der Stock, 2006/01/19
Fwd: SF new column announcement: How not to respond to a security advisory, Andrew van der Stock, 2006/01/19
- [SPAM] Re: SF new column announcement: How not to respond to a security advisory, Kurt Seifried, 2006/01/19
  - Re: [SPAM] Re: SF new column announcement: How not to respond to a security advisory, Andrew van der Stock, 2006/01/19
    - Re: [SPAM] Re: SF new column announcement: How not to respond to a security advisory, Byron Sonne, 2006/01/19
    - Re: [SPAM] Re: SF new column announcement: How not to respond to a security advisory, Byron Sonne, 2006/01/20
    - [SPAM] Re: [SPAM] Re: SF new column announcement: How not to respond to a security advisory, Kurt Seifried, 2006/01/20
    - Re: Re: [SPAM] Re: SF new column announcement: How not to respond to a security advisory, Markus Vervier, 2006/01/22
MSIE session cookies, John Bond, 2006/01/19
- RE: MSIE session cookies, Richard M. Smith, 2006/01/19
  - Re: MSIE session cookies, John Bond, 2006/01/19
    - Re: MSIE session cookies, Scott Hamm, 2006/01/19
    - Re: MSIE session cookies, John Bond, 2006/01/19
    - RE: MSIE session cookies, Richard M. Smith, 2006/01/20
    - Re: MSIE session cookies, John Bond, 2006/01/19
    - RE: MSIE session cookies, Richard M. Smith, 2006/01/19
    - Re: MSIE session cookies, John Bond, 2006/01/19
    - RE: MSIE session cookies, Richard M. Smith, 2006/01/19
- Re: MSIE session cookies, Jean-Jacques Halans, 2006/01/19
- Re: MSIE session cookies, Aman Raheja, 2006/01/21
- RE: MSIE session cookies, Zhou, Joe [HR], 2006/01/19
- RE: MSIE session cookies, Sebastien Deleersnyder, 2006/01/19
- RE: MSIE session cookies, Labe Grzegorz DRS-BSI Centrala, 2006/01/19
- RE: MSIE session cookies, veille_audit, 2006/01/19
- RE: MSIE session cookies, Zhou, Joe [HR], 2006/01/21
  - Message not available
    - Re: MSIE session cookies, John Bond, 2006/01/20
Suggestion: email anti-spoof measure on web site, ma . huijuan, 2006/01/19
- Re: Suggestion: email anti-spoof measure on web site, mike, 2006/01/19
  - Re: Suggestion: email anti-spoof measure on web site, Georgi Alexandrov, 2006/01/23
- Re: Re: Suggestion: email anti-spoof measure on web site, ma . huijuan, 2006/01/20
- Re: Re: Re: Suggestion: email anti-spoof measure on web site, mike, 2006/01/20
Article: "Security Testing Demystified", Debasis Mohanty, 2006/01/19
Re: Re: notice: mambo scanner, dontbugme, 2006/01/17
Announcement: The Web Application Firewall Evaluation Criteria v1 Released, contact, 2006/01/17
Paros 3.2.9 release, contact, 2006/01/16
Mambo File Inclusion Attacks, Mark Ryan del Moral Talabis, 2006/01/15
- Re: Mambo File Inclusion Attacks, Christopher Kunz, 2006/01/15
  - Re: Mambo File Inclusion Attacks, Mark Ryan del Moral Talabis, 2006/01/17
EUSecWest papers and CanSecWest CFP, Dragos Ruiu, 2006/01/15
Hacking With The Google Search Engine, Paul Laudanski, 2006/01/14
- Re: [DCC SPAM] Hacking With The Google Search Engine, Lance James, 2006/01/17
  - Re: [DCC SPAM] Hacking With The Google Search Engine, Paul Laudanski, 2006/01/19
- RE: Hacking With The Google Search Engine, Matt Fisher, 2006/01/17
  - Re: Hacking With The Google Search Engine, Jean-Jacques Halans, 2006/01/17
    - Re: Hacking With The Google Search Engine, Ryan McGeehan, 2006/01/17
#include file tag in HTML: possible issues?, Giuseppe DELL'ERBA, 2006/01/14
- Re: #include file tag in HTML: possible issues?, Aman Raheja, 2006/01/15
  - RE: #include file tag in HTML: possible issues?, Giuseppe DELL'ERBA, 2006/01/17
- Re: #include file tag in HTML: possible issues?, Jon Hart, 2006/01/17
- RE: #include file tag in HTML: possible issues?, Giuseppe DELL'ERBA, 2006/01/20
Preliminary Announcement: 2006 European OWASP AppSec Conference - May 30-31, 2006 near Brussels, Dave Wichers, 2006/01/14
Call For Papers: 2006 OWASP AppSec Europe Conference, Dave Wichers, 2006/01/13
net-square tools release announcement:MSNPawn, Hemil, 2006/01/12
Administrivia: Good news, everyone. Adverts are now distinct, Andrew van der Stock, 2006/01/11
RE: [WEB SECURITY] Web Hacking Incident: PayPal Phishing Site Exploits Google XSS Vulnerability, RSnake, 2006/01/11
- RE: [WEB SECURITY] Web Hacking Incident: PayPal Phishing Site Exploits Google XSS Vulnerability, dpw, 2006/01/11
  - RE: [WEB SECURITY] Web Hacking Incident: PayPal Phishing Site Exploits Google XSS Vulnerability, Paul Laudanski, 2006/01/11
  - Re: Referer/302 behavior [WEB SECURITY] Web Hacking... PayPal Phishing ... Google redirect, Peter Watkins, 2006/01/31
PayPal Phishing Site Exploits Google XSS Vulnerability, Paul Laudanski, 2006/01/11
- Re: PayPal Phishing Site Exploits Google XSS Vulnerability, Stelian Ene, 2006/01/11
  - Re: PayPal Phishing Site Exploits Google XSS Vulnerability, Paul Laudanski, 2006/01/12
- Re: PayPal Phishing Site Exploits Google XSS Vulnerability, shwaya, 2006/01/13
XSS online tester, Matthieu, 2006/01/11
- Re: XSS online tester, Sandeep Shetty, 2006/01/13
  - Re: XSS online tester, Matthieu, 2006/01/12
SF article announcement: Patching a broken Windows, Andrew van der Stock, 2006/01/09
applet security, test . future, 2006/01/09
- RE: applet security, Andrew Chong, 2006/01/09
  - Re: applet security, Dean H. Saxe, 2006/01/09
- RE: applet security, Richard M. Smith, 2006/01/10
- RE: applet security, Jeff Robertson, 2006/01/09
- Re: applet security, test . future, 2006/01/11
  - Re: applet security, Michael Silk, 2006/01/11
- Re: Re: applet security, test . future, 2006/01/12
  - Re: applet security, Steve Barnet, 2006/01/12
  - RE: Re: applet security, Andrew Chong, 2006/01/12
- Re: Re: applet security, test . future, 2006/01/12
Defacing Groups using PHP Include Attacks as Vector, bugtraq, 2006/01/09
Awstats and XMLRPC for PHP attacks, Mark Ryan del Moral Talabis, 2006/01/08
Web App Traps (custom IDS), Meder Kydyraliev, 2006/01/08
- RE: Web App Traps (custom IDS), Damhuis Anton, 2006/01/09
  - Re: Web App Traps (custom IDS), Meder Kydyraliev, 2006/01/09
  - Re: Web App Traps (custom IDS), Jason, 2006/01/09
Thick Clients Gone Wrong, zeno, 2006/01/08
Please Review a Diffie Hellman diagram, Saqib Ali, 2006/01/07
- Re: Please Review a Diffie Hellman diagram, Jason Murray, 2006/01/08
- Message not available
  - Re: Please Review a Diffie Hellman diagram, Sanjay Rawat, 2006/01/09
- RE: Please Review a Diffie Hellman diagram, Hall, Carl, 2006/01/09
  - Re: Please Review a Diffie Hellman diagram, Saqib Ali, 2006/01/10
- RE: Please Review a Diffie Hellman diagram, Mrinal Biswas, 2006/01/09
  - Message not available
    - RE: Please Review a Diffie Hellman diagram, Sanjay Rawat, 2006/01/10
  - Re: Please Review a Diffie Hellman diagram, Saqib Ali, 2006/01/10
- RE: Please Review a Diffie Hellman diagram, Hall, Carl, 2006/01/10
  - Re: Please Review a Diffie Hellman diagram, Saqib Ali, 2006/01/14
WebAppSec appends advertisements to mailing list messages?!, Amit Klein (AKsecurity), 2006/01/06
- Re: WebAppSec appends advertisements to mailing list messages?!, Peter Conrad, 2006/01/10
- RE: WebAppSec appends advertisements to mailing list messages?!, Ory Segal, 2006/01/10
  - Re: WebAppSec appends advertisements to mailing list messages?!, Peter Conrad, 2006/01/10
    - Administrivia: Adverts, Andrew van der Stock, 2006/01/10
  - RE: WebAppSec appends advertisements to mailing list messages?!, Clement Dupuis, 2006/01/10
- RE: WebAppSec appends advertisements to mailing list messages?!, Jason Gregson, 2006/01/10
Felony For Refreshing A Web Page, zeno, 2006/01/06
- Re: Felony For Refreshing A Web Page, exon, 2006/01/07
  - Re: Felony For Refreshing A Web Page, Todd Ellner, 2006/01/07
    - Re: Felony For Refreshing A Web Page, exon, 2006/01/07
  - RE: Felony For Refreshing A Web Page, Ebeling, Jr., Herman Frederick, 2006/01/07
- RE: Felony For Refreshing A Web Page, Ebeling, Jr., Herman Frederick, 2006/01/08
- Re: Felony For Refreshing A Web Page, Charles Miller, 2006/01/08
  - Re: Felony For Refreshing A Web Page, lakewood1@copper.net, 2006/01/09
- Re: Felony For Refreshing A Web Page, Jason Coombs, 2006/01/07
  - RE: Felony For Refreshing A Web Page, Ebeling, Jr., Herman Frederick, 2006/01/08
Re: Securing Tomcat, oc . rynning . no, 2006/01/06
- Re: Securing Tomcat, Stephen de Vries, 2006/01/09
Memo: Re: MD5 math question, tim . m . james, 2006/01/06
Mac OS X packages of proxy tools, Stephen de Vries, 2006/01/06
MD5 math question, Jeff Robertson, 2006/01/03
- Re: MD5 math question, Chris Varenhorst, 2006/01/04
- Re: MD5 math question, Tim, 2006/01/04
- RE: MD5 math question, Vipul Kumra, 2006/01/04
- Memo: Re: MD5 math question, tim . m . james, 2006/01/04
- Re: MD5 math question, Charles Miller, 2006/01/05
  - Re: MD5 math question, exon, 2006/01/06
    - Re: MD5 math question, Tim, 2006/01/06
    - Re: MD5 math question, exon, 2006/01/06
    - Re: MD5 math question, Tim, 2006/01/07
    - Re: MD5 math question, exon, 2006/01/07
    - Re: MD5 math question, Tim, 2006/01/07
    - Re: MD5 math question, Charles Miller, 2006/01/06
- FW: RE: MD5 math question, Vipul Kumra, 2006/01/04
  - Re: FW: RE: MD5 math question, Chuck, 2006/01/07
- RE: MD5 math question, Navroz Shariff, 2006/01/04
- RE: MD5 math question, Jeff Robertson, 2006/01/06
Re: Dubious -- New firefox master password cracker and firefox signon password decryptor...!!!, mike, 2006/01/02
New firefox master password cracker and firefox signon password decryptor...!!!, Nagareshwar Talekar, 2006/01/01