Web Application Security Mode:
(Page 2 of 332)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
Re: New tool HTTP Traceroute 2014-11-04
Robin Wood (robin digininja org)
On 4 November 2014 23:19, Wayland Morgan <dotwayland (at) gmail (dot) com [email concealed]> wrote:
> How is the tool doing SSL checks? I seem to be getting invalid cert warnings
> while doing queries in the tool on sites that show as valid in a browser.
> operator error?

Using the Ruby gem's built in checking, can you give me

[ more ]  [ reply ]
[Appcheck-NG] Unpatched Vulnerabilities in Magento E-Commerce Platform 2014-11-04
AppCheck_Advisories (advisories appcheck-ng com)
On April 8th 2014, AppCheck reported several Cross Site Scripting Vulnerabilities in the Magento e-commerce platform via the eBay bug bounty program. eBay responded to inform us that the vulnerabilities had already been reported.

However, since more than 6 months have passed and no fix is yet avail

[ more ]  [ reply ]
Secure iFrames 2014-11-03
NightShade (avghacker gmail com) (2 replies)
Was hoping to get some feedback on what everyone feels are best
practices around securing iFrames. I've seen a lot of payment platforms
moving in this direction (ie. Gumroad, Stripe, Memberful) yet with
little documentation around "here is the best way to secure the iFrame
our JavaScript genera

[ more ]  [ reply ]
Re: Secure iFrames 2014-11-05
David Ford (david blue-labs org)
Re: Secure iFrames 2014-11-04
Dave Pyper (davepyper davepyper com) (2 replies)
Re: Secure iFrames 2014-11-05
David Ford (david blue-labs org)
Re: Secure iFrames 2014-11-04
Tim Brown (tmb 65535 com)
CFP: Fourth ICEEE2015 - International Conference on E-Learning and E-Technologies in Education 2014-11-03
Conference Updates (jackie sdiwc info)
The Fourth International Conference on E-Learning and E-Technologies in
Education (ICEEE2015)

Surya University, Indonesia (21 KM from Jakarta Airport)
September 10-12, 2015
http://sdiwc.net/conferences/iceee2015/

The proposed conference on the above theme will be held at Surya
University, Indone

[ more ]  [ reply ]
New tool HTTP Traceroute 2014-11-03
Robin Wood (robin digininja org) (2 replies)
I've just released a new tool, HTTP Traceroute. This tool takes a URL
and follows any redirects from it till it reaches the end of the line.
At each stage it it shows all headers, cookies, warns about long
bodies and bad SSL certificates.

Hopefully it will be useful when you get large redirect chai

[ more ]  [ reply ]
Re: New tool HTTP Traceroute 2014-11-04
Robin Wood (robin digininja org)
Re: New tool HTTP Traceroute 2014-11-03
Jeremiah Cornelius (jeremiah nur net)
Security and Communication Networks - Special Issue on Software Defined Networking Security 2014-10-31
Gregory Blanc (gregory blanc gmail com)
[Apologies if you receive multiple copies of this message]
* Wiley's Security and Communication Networks (SCN) *
** Special Issue on Software Defined Networking Security **

Recent years have witnessed the rapid development of software-defined networking
(SDN), which transfers essential networking f

[ more ]  [ reply ]
[Deadline Extension] CFP COMCOM, Elsevier: SI on Security and Privacy in Unified Communications: Challenges and Solutions, Manuscript Due November 21, 2014 2014-10-31
Georgios Karopoulos (georgios karopoulos gmail com)
[Apologies if you receive multiple copies of this message]

Manuscript submission: extended to November 21, 2014

========================================================================

*Call for Papers*

Computer Communications Journal, Elsevier
(Current Impact Factor: 1.352)

Special Issue on:
S

[ more ]  [ reply ]
Administrivia: Trouble Ticket Systems subscribing to this list and unsubscribe requests 2014-10-23
Andrew van der Stock (vanderaj greebo net)
Hi there,

I have become aware of a number of you subscribing trouble ticketing
systems to this mail list. Robin (@digininja) has managed to find
someone to start helping us.

I will - with some luck - be getting access to the admin panel, and if
that happens, I will be unsubscribing any trouble tic

[ more ]  [ reply ]
Re: Shameless plug: OWASP Board Elections 2014-10-22
Brian Zaugg (bzaugg authentic8 com) (1 replies)
Here! Here! I like the idea of making the list more active and useful.
And, a good article on cross-domain policy and CSRF is a great start.

Brian

>
> On Tue, Oct 21, 2014 at 9:01 AM, Robin Wood <robin (at) digi (dot) ninj [email concealed]a> wrote:
>>
>> Hi
>> I'd love to see the list going again and getting more use. I thin

[ more ]  [ reply ]
Re: Shameless plug: OWASP Board Elections 2014-10-24
Seth Art (sethsec gmail com) (1 replies)
Re: Shameless plug: OWASP Board Elections 2014-10-27
Robin Wood (robin digi ninja)
unsubscribing from the list 2014-10-22
Robin Wood (robin digininja org) (1 replies)
Seeing as quite a few people have mailed me directly asking to
unsubscribe from the list I want to point to these entries which are
in the headers of every mail sent out by the list.

List-Id: <webappsec.list-id.securityfocus.com>
List-Post: <mailto:webappsec (at) securityfocus (dot) com [email concealed]>
List-Help: <mailto:we

[ more ]  [ reply ]
Re: unsubscribing from the list 2014-10-22
Andrew van der Stock (vanderaj greebo net)
Shameless plug: OWASP Board Elections 2014-10-21
Andrew van der Stock (vanderaj greebo net) (1 replies)
Hi there,

Apologies for complete self interest where the list admin (me) pushes
a personal interest (OWASP). However, I believe the Open Web
Application Security Project is on topic for the web application
security mail list, and I wouldn't normally do it (you can check -
I've been moderator since

[ more ]  [ reply ]
Re: Shameless plug: OWASP Board Elections 2014-10-21
Robin Wood (robin digi ninja) (1 replies)
Re: Shameless plug: OWASP Board Elections 2014-10-22
maestro (7h3 m43s7r0 gmail com)
CFP COMCOM, Elsevier: Special Issue on Security and Privacy in Unified Communications: Challenges and Solutions, Manuscript Due October 31, 2014 2014-10-20
Georgios Karopoulos (georgios karopoulos gmail com)
[Apologies if you receive multiple copies of this message]

========================================================================

*Call for Papers*

Computer Communications Journal, Elsevier
(Current Impact Factor: 1.352)

Special Issue on:
Security and Privacy in Unified Communications: Challen

[ more ]  [ reply ]
CFP COMCOM, Elsevier: Special Issue on Security and Privacy in Unified Communications: Challenges and Solutions, Manuscript Due October 31, 2014 2014-10-07
Georgios Karopoulos (georgios karopoulos gmail com)
[Apologies if you receive multiple copies of this message]

========================================================================

*Call for Papers*

Computer Communications Journal, Elsevier
(Current Impact Factor: 1.352)

Special Issue on:
Security and Privacy in Unified Communications: Challen

[ more ]  [ reply ]
OWASP Xenotix XSS Exploit Framework v6 Released 2014-09-15
Ajin Abraham (ajin25 gmail com)
Hi All,
Xenotix provides Zero False Positive XSS Detection by
performing the Scan within the browser engines where in real world,
payloads get reflected. Xenotix Scanner Module is incorporated with 3
intelligent fuzzers to reduce the scan time and produce better
results. If you really don't

[ more ]  [ reply ]
t2â??14 Challenge to be released 2014-09-13 10:00 EEST 2014-09-07
Tomi Tuominen (tomi tuominen t2 fi)
Running assets is always difficult, however this year has been excruciating for t2 infosec. We lost one of our most prized and well placed deep cover operatives in a foreign three letter agency. Shortly after the CFP, communications stopped and we have to assume her new assignment is a permanent pla

[ more ]  [ reply ]
Arachni v1.0 (WebUI v0.5) has been released (Open Source Web Application Security Scanner Framework) 2014-08-29
Tasos Laskos (tasos laskos gmail com)
Hey folks,

There's a new version of Arachni, an Open Source, modular and high-performance
Web Application Security Scanner Framework written in Ruby.

This release makes Arachni the first F/OSS system to have support for a browser
environment, allowing it to handle modern web applications which mak

[ more ]  [ reply ]
IJDSN - Special Issue on Research Advances in Security and Privacy for Smart Cities 2014-08-07
Georgios Kambourakis (gkamb aegean gr)
International Journal of Distributed Sensor Networks (IF 0.923)
Special Issue on Research Advances in Security and Privacy for Smart Cities

*** SUBMISSION DEADLINE EXTENDED TO Sept. 19, 2014 ***

Security for smart cities is considered to embrace both urban security
subsystems and infrastructure s

[ more ]  [ reply ]
nullcon CFP is open 2014-08-06
nullcon (nullcon nullcon net)
Dear Security Gurus,

6th year | CFP opens on 6th Aug 2014 | conference on 6th Feb 2015.

Welcome to nullcon 666! Bring out the beast in you.
http://en.wikipedia.org/wiki/666_(number)

we are happy to open the CFP. Time to tickle your gray cells and
submit your research.
Training: 4th-5th Feb 2015
C

[ more ]  [ reply ]
6 new vulnerabilities 2014-07-29
Mark Litchfield123 (mark securatary com)
I have released details of six new Bug Bounty vulnerabilities, 5 of
which resulted in total payouts of $33,217.00 Usual write ups with step
by step screen shots detailed.

I have chosen to move the content from securatary.com to now be hosted
on https://www.uzbey.com/bbp-funding the reasons for

[ more ]  [ reply ]
(Page 2 of 332)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus