Bugtraq mailing list archives

Tech Article: HTTP Content Filter Analysis - Finjan SurfinGate V5.6

From: "ivan.buetler () csnc ch" <ivan.buetler () csnc ch>
Date: Mon, 27 Jan 2003 23:14:25 +0100

#############################################################
#
# COMPASS SECURITY                        http://www.csnc.ch/
# 
#############################################################
#
# Topic:        Tech-Article
# Betreff:      HTTP/S Content Filter Analysis - Finjan SurfinGate V5.6
# Autor:        Jan Monsch & Ivan Buetler
# Date:         27. January 2003
# 
#############################################################

Dear Reader

As you might know - malicious mobile code contamination via web download 
becomes a real threat. HTTP content filter techniqe promises protection at 
your perimeter infrastructure. While penetrating the clients' infrastructure 
during a pen-test job, we are ready to use bypass technique in order to 
successfully exploiting the clients security mechanism. This article is 
focussed in Finjan SurfinGate HTTP content filter protection - and gives you 
a better understanding of threats and risks. 

We have used Finjan SurfinGate V5.6. The new V6.0 is already available. 

Find the analysis:

http://www.csnc.ch/downloads/docs/techdocs/FinjanSurfinGate_Analysis_CSNC_V3.0.pdf

Kind Regards

Compass Security TEAM

Current thread:

Tech Article: HTTP Content Filter Analysis - Finjan SurfinGate V5.6 ivan.buetler () csnc ch (Jan 28)