Surviving the Week 5/25/2012
Not that it has been a quiet week in the web application seucrity arena, it was simply a busy week. Microsoft’s SDL Expands Beyond Redmond Microsoft has given the industry a process for secure software…
Monthly Archives: May 2012
An Information Security Place Podcast – Episode 04 for 2012
Hmmm Lets see if I even remember how to enter this stuff anymore… Yeap you guessed it, we finally recorded another episode – WOOT! Show Notes: InfoSec News Update – Howard Schmidt is Retiring…
Surviving the Week 5/18/2012
WAF Wars WAF is more commonly used as an IDS rather than IPS, This is mainly due to the amount of alerts they generate when using a default rule set. To use a WAF more…
Surviving the Week – 5/11/12
Common User Passwords Profiler Interesting python script which when used in conjunction with information from social media i.e. Facebook, Twitter and Linkedin it can create a possible password list for the user. With social media…
Surviving the Week – 05/04/2012
Insight to online black markets and how they work A short article that provides a brief look at how bitcoins and Tor make anonymous black markets tick. http://features.techworld.com/security/3355031/online-black-markets-how-they-work/?olo=rss Revelo – Javascript Deobfuscator This tool works…
Top 10 Business Logic Attack Vectors
We released a new white paper today, Top 10 Business Logic Attack Vectors. Why did we write this paper? Business logic vulnerabilities are not new, but these vulnerabilities are common, dangerous and are too often…