Web Application Security Mode:
(Page 3 of 333)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
Secure iFrames 2014-11-03
NightShade (avghacker gmail com)
Was hoping to get some feedback on what everyone feels are best
practices around securing iFrames. I've seen a lot of payment platforms
moving in this direction (ie. Gumroad, Stripe, Memberful) yet with
little documentation around "here is the best way to secure the iFrame
our JavaScript genera

[ more ]  [ reply ]
CFP: Fourth ICEEE2015 - International Conference on E-Learning and E-Technologies in Education 2014-11-03
Conference Updates (jackie sdiwc info)
The Fourth International Conference on E-Learning and E-Technologies in
Education (ICEEE2015)

Surya University, Indonesia (21 KM from Jakarta Airport)
September 10-12, 2015
http://sdiwc.net/conferences/iceee2015/

The proposed conference on the above theme will be held at Surya
University, Indone

[ more ]  [ reply ]
New tool HTTP Traceroute 2014-11-03
Robin Wood (robin digininja org)
I've just released a new tool, HTTP Traceroute. This tool takes a URL
and follows any redirects from it till it reaches the end of the line.
At each stage it it shows all headers, cookies, warns about long
bodies and bad SSL certificates.

Hopefully it will be useful when you get large redirect chai

[ more ]  [ reply ]
Security and Communication Networks - Special Issue on Software Defined Networking Security 2014-10-31
Gregory Blanc (gregory blanc gmail com)
[Apologies if you receive multiple copies of this message]
* Wiley's Security and Communication Networks (SCN) *
** Special Issue on Software Defined Networking Security **

Recent years have witnessed the rapid development of software-defined networking
(SDN), which transfers essential networking f

[ more ]  [ reply ]
[Deadline Extension] CFP COMCOM, Elsevier: SI on Security and Privacy in Unified Communications: Challenges and Solutions, Manuscript Due November 21, 2014 2014-10-31
Georgios Karopoulos (georgios karopoulos gmail com)
[Apologies if you receive multiple copies of this message]

Manuscript submission: extended to November 21, 2014

========================================================================

*Call for Papers*

Computer Communications Journal, Elsevier
(Current Impact Factor: 1.352)

Special Issue on:
S

[ more ]  [ reply ]
Administrivia: Trouble Ticket Systems subscribing to this list and unsubscribe requests 2014-10-23
Andrew van der Stock (vanderaj greebo net)
Hi there,

I have become aware of a number of you subscribing trouble ticketing
systems to this mail list. Robin (@digininja) has managed to find
someone to start helping us.

I will - with some luck - be getting access to the admin panel, and if
that happens, I will be unsubscribing any trouble tic

[ more ]  [ reply ]
Re: Shameless plug: OWASP Board Elections 2014-10-22
Brian Zaugg (bzaugg authentic8 com) (1 replies)
Here! Here! I like the idea of making the list more active and useful.
And, a good article on cross-domain policy and CSRF is a great start.

Brian

>
> On Tue, Oct 21, 2014 at 9:01 AM, Robin Wood <robin (at) digi (dot) ninj [email concealed]a> wrote:
>>
>> Hi
>> I'd love to see the list going again and getting more use. I thin

[ more ]  [ reply ]
Re: Shameless plug: OWASP Board Elections 2014-10-24
Seth Art (sethsec gmail com) (1 replies)
Re: Shameless plug: OWASP Board Elections 2014-10-27
Robin Wood (robin digi ninja)
unsubscribing from the list 2014-10-22
Robin Wood (robin digininja org) (1 replies)
Seeing as quite a few people have mailed me directly asking to
unsubscribe from the list I want to point to these entries which are
in the headers of every mail sent out by the list.

List-Id: <webappsec.list-id.securityfocus.com>
List-Post: <mailto:webappsec (at) securityfocus (dot) com [email concealed]>
List-Help: <mailto:we

[ more ]  [ reply ]
Re: unsubscribing from the list 2014-10-22
Andrew van der Stock (vanderaj greebo net)
Shameless plug: OWASP Board Elections 2014-10-21
Andrew van der Stock (vanderaj greebo net) (1 replies)
Hi there,

Apologies for complete self interest where the list admin (me) pushes
a personal interest (OWASP). However, I believe the Open Web
Application Security Project is on topic for the web application
security mail list, and I wouldn't normally do it (you can check -
I've been moderator since

[ more ]  [ reply ]
Re: Shameless plug: OWASP Board Elections 2014-10-21
Robin Wood (robin digi ninja) (1 replies)
Re: Shameless plug: OWASP Board Elections 2014-10-22
maestro (7h3 m43s7r0 gmail com)
CFP COMCOM, Elsevier: Special Issue on Security and Privacy in Unified Communications: Challenges and Solutions, Manuscript Due October 31, 2014 2014-10-20
Georgios Karopoulos (georgios karopoulos gmail com)
[Apologies if you receive multiple copies of this message]

========================================================================

*Call for Papers*

Computer Communications Journal, Elsevier
(Current Impact Factor: 1.352)

Special Issue on:
Security and Privacy in Unified Communications: Challen

[ more ]  [ reply ]
CFP COMCOM, Elsevier: Special Issue on Security and Privacy in Unified Communications: Challenges and Solutions, Manuscript Due October 31, 2014 2014-10-07
Georgios Karopoulos (georgios karopoulos gmail com)
[Apologies if you receive multiple copies of this message]

========================================================================

*Call for Papers*

Computer Communications Journal, Elsevier
(Current Impact Factor: 1.352)

Special Issue on:
Security and Privacy in Unified Communications: Challen

[ more ]  [ reply ]
OWASP Xenotix XSS Exploit Framework v6 Released 2014-09-15
Ajin Abraham (ajin25 gmail com)
Hi All,
Xenotix provides Zero False Positive XSS Detection by
performing the Scan within the browser engines where in real world,
payloads get reflected. Xenotix Scanner Module is incorporated with 3
intelligent fuzzers to reduce the scan time and produce better
results. If you really don't

[ more ]  [ reply ]
t2â??14 Challenge to be released 2014-09-13 10:00 EEST 2014-09-07
Tomi Tuominen (tomi tuominen t2 fi)
Running assets is always difficult, however this year has been excruciating for t2 infosec. We lost one of our most prized and well placed deep cover operatives in a foreign three letter agency. Shortly after the CFP, communications stopped and we have to assume her new assignment is a permanent pla

[ more ]  [ reply ]
Arachni v1.0 (WebUI v0.5) has been released (Open Source Web Application Security Scanner Framework) 2014-08-29
Tasos Laskos (tasos laskos gmail com)
Hey folks,

There's a new version of Arachni, an Open Source, modular and high-performance
Web Application Security Scanner Framework written in Ruby.

This release makes Arachni the first F/OSS system to have support for a browser
environment, allowing it to handle modern web applications which mak

[ more ]  [ reply ]
IJDSN - Special Issue on Research Advances in Security and Privacy for Smart Cities 2014-08-07
Georgios Kambourakis (gkamb aegean gr)
International Journal of Distributed Sensor Networks (IF 0.923)
Special Issue on Research Advances in Security and Privacy for Smart Cities

*** SUBMISSION DEADLINE EXTENDED TO Sept. 19, 2014 ***

Security for smart cities is considered to embrace both urban security
subsystems and infrastructure s

[ more ]  [ reply ]
nullcon CFP is open 2014-08-06
nullcon (nullcon nullcon net)
Dear Security Gurus,

6th year | CFP opens on 6th Aug 2014 | conference on 6th Feb 2015.

Welcome to nullcon 666! Bring out the beast in you.
http://en.wikipedia.org/wiki/666_(number)

we are happy to open the CFP. Time to tickle your gray cells and
submit your research.
Training: 4th-5th Feb 2015
C

[ more ]  [ reply ]
6 new vulnerabilities 2014-07-29
Mark Litchfield123 (mark securatary com)
I have released details of six new Bug Bounty vulnerabilities, 5 of
which resulted in total payouts of $33,217.00 Usual write ups with step
by step screen shots detailed.

I have chosen to move the content from securatary.com to now be hosted
on https://www.uzbey.com/bbp-funding the reasons for

[ more ]  [ reply ]
Ruxcon 2014 Final Call For Presentations 2014-07-15
cfp ruxcon org au
Ruxcon 2014 Call For Presentations
Melbourne, Australia, October 11th-12th
CQ Function Centre

http://www.ruxcon.org.au

The Ruxcon team is pleased to announce the Final Call For Presentations for Ruxcon 2014.

This year the conference will take place over the weekend of the 11th and 12th of October

[ more ]  [ reply ]
IJDSN SI on Research Advances in Security and Privacy for Smart Cities 2014-07-12
Georgios Kambourakis (gkamb aegean gr)
*Deadline is approaching*

International Journal of Distributed Sensor Networks (Impact factor: 0.727)
*Special Issue on Research Advances in Security and Privacy for Smart
Cities*
Online version of CFP: http://www.hindawi.com/journals/ijdsn/si/239803/cfp/

Security for smart cities is considered to

[ more ]  [ reply ]
t2'14: Call for Papers 2014 (Helsinki / Finland) 2014-05-19
Tomi Tuominen (tomi tuominen t2 fi)
#
# t2'14 - Call For Papers (Helsinki, Finland) - October 23 - 24, 2014
#

Do you feel like Las Vegas is too hot, Berlin too bohème, Miami too humid, Singapore too clean and Pattaya just totally confusing ? No worries! Helsinki will be the perfect match for you â?? guaranteed low temperature, high

[ more ]  [ reply ]
Re: Worst news story I have ever read 2014-05-16
Mark Litchfield (mark securatary com)
Update - SCMagazine (Steve Gold) has kindly removed the story. Thank you.

Also thanks to everyone that responded directly to me.

All the best

Mark

This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website

[ more ]  [ reply ]
Worst news story I have ever read 2014-05-15
Mark Litchfield (mark securatary com)
Worst article I have ever read, would expect a lot better from SC
Magazine. At least understand what you are writing about !!

http://www.scmagazineuk.com/make-money-from-paypal--but-not-legally/arti
cle/347142/

"Mark Litchfield, a researcher with Securatary, meanwhile, says he has
spotted a simil

[ more ]  [ reply ]
PayPal Manager Admin Account Hijack 2014-05-15
Mark Litchfield (mark securatary com) (1 replies)
Hi All,

I have just released a new vulnerability at
http://www.securatary.com/vulnerabilities outlining a hack on
http://manager.paypal.com that in the end allowed full admin access.

PayPal were very quick to fix this issue, so nice job PayPal Security /
Engineering team

--
All the best

Mark

[ more ]  [ reply ]
Re: PayPal Manager Admin Account Hijack 2014-05-15
Daniel Kester (dekester usgs gov)
Breakpoint 2014 Call For Presentations 2014-05-07
cfp ruxcon org au
Breakpoint 2014 Call For Papers
Melbourne, Australia, October 8th-9th
Intercontinental Rialto
http://www.ruxconbreakpoint.com

.[x]. Introduction .[x].

The Ruxcon team is pleased to announce Call For Papers for Breakpoint 2014.

Breakpoint showcases the work of expert security researchers from a

[ more ]  [ reply ]
(Page 3 of 333)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus