WebApp Sec: by author

• RSS Feed
• About List
• All Lists

Previous period

Next period

127 messages starting Dec 15 06 and ending Oct 03 06
Date index | Thread index | Author index

김영일

What problem have this Rijndael(.NET&PHP) code? 김영일 (Dec 15)

Alexander Berezhnoy

Files upload security considerations Alexander Berezhnoy (Nov 09)

Amit Klein

Educational write-up by Amit Klein: "A Refreshing Look at Redirection" Amit Klein (Nov 02)
ERRATA (Re: "Host header cannot be trusted as an anti anti DNS-pinning measure") Amit Klein (Dec 26)
Re: Ruining Security with java.util.Random Amit Klein (Dec 19)

Andrew van der Stock

Ajax Security presentation from OWASP meeting Andrew van der Stock (Nov 09)
Fwd: SF new column announcement: A Hard Lesson in Privacy Andrew van der Stock (Nov 27)
Administrivia Andrew van der Stock (Dec 04)

Anurag Agarwal

How to find the login name of a user accessing my website Anurag Agarwal (Nov 05)

A. R.

Re: XSS - how to run script A. R. (Oct 19)

Arian J. Evans

RE: SQL In the Request Arian J. Evans (Oct 09)
RE: Open Source Application Vulnerability Assessment Tools Arian J. Evans (Oct 02)
RE: Open Source Application Vulnerability Assessment Tools Arian J. Evans (Oct 01)

Benjamin Tomhave

RE: Netscape 8 inherits firefox, explorer vulnerabilities Benjamin Tomhave (Oct 04)
RE: 2-factor auth for all Benjamin Tomhave (Oct 27)

bill . fetters

Teros or Citrix Application Firewall bill . fetters (Oct 19)

Boaz Shunami

RE: [WEB SECURITY] Sesion hijacking impossible with SSL client authentication? Boaz Shunami (Nov 25)

Brad Lhotsky

Re: Magic Quotes Brad Lhotsky (Oct 16)
Re: Magic Quotes Brad Lhotsky (Oct 17)

Brooks, Shane

RE: Why doesn't Amazon enforce a password policy? Brooks, Shane (Nov 01)

bryan allott

Re: [WEB SECURITY] Re: SQL In the Request bryan allott (Oct 09)
Re: [WEB SECURITY] Re: SQL In the Request bryan allott (Oct 09)
SQL In the Request bryan allott (Oct 05)
Re: [WEB SECURITY] Re: SQL In the Request bryan allott (Oct 09)

bugtraq

More Fun with CSS History Theft bugtraq (Oct 09)
Re: [WEB SECURITY] Re: SQL In the Request bugtraq (Oct 05)
Application Security Predictions for 2007 bugtraq (Dec 14)
Challenges faced by automated web application security assessment tools bugtraq (Nov 13)

c0redump

Re: Files upload security considerations c0redump (Nov 09)
Re: Files upload security considerations c0redump (Nov 09)

Cleiton Martins

Re: Files upload security considerations Cleiton Martins (Nov 09)

crazy frog crazy frog

Re: Fuzzer Sources crazy frog crazy frog (Nov 01)

Dave Ferguson

Netflix.com XSRF vuln Dave Ferguson (Oct 16)

David Glosser

Cannibals are what they eat David Glosser (Nov 01)

David Kierznowski

RSS Injection in Sage part 2 David Kierznowski (Nov 08)
Re: 2-factor auth for all David Kierznowski (Oct 27)
Web Backdoor Compilation David Kierznowski (Dec 18)
JavaScript External Scanner (JSEScanner) David Kierznowski (Oct 01)
JavaScript Web Ping Tool David Kierznowski (Oct 05)

Dhruv Soi

Re: How to find the login name of a user accessing my website Dhruv Soi (Nov 05)

Dinis Cruz

Call for panelists: "The role of frameworks (e.g., .Net, Java, Enterprise Library, Struts, JaCorb) in 'forcing' developers to create and deploy 'secure' applications" panel in the next OWASP Conference Dinis Cruz (Oct 02)

DokFLeed

Re: Magic Quotes DokFLeed (Oct 15)
Re: Magic Quotes DokFLeed (Oct 17)
Magic Quotes DokFLeed (Oct 09)
Re: Magic Quotes DokFLeed (Oct 17)
Re: Magic Quotes DokFLeed (Oct 10)

Dragos Ruiu

EUSecWest/London CFP extended to Nov. 7 Dragos Ruiu (Nov 02)
CanSecWest 2007 (April 18-20) Call For Papers (Deadline January 7th) Dragos Ruiu (Dec 14)
PacSec 2006 announcement, EUSecWest 2007 Call For Papers (Mar 1-2, deadline Oct 20th) Dragos Ruiu (Oct 03)

ed

Re: How to find the login name of a user accessing my website ed (Nov 05)
Re: Files upload security considerations ed (Nov 13)
Re: [WEB SECURITY] Sesion hijacking impossible with SSL client authentication? ed (Nov 27)
Re: Files upload security considerations ed (Nov 09)

Emanuel Marufo

Netscape 8 inherits firefox, explorer vulnerabilities Emanuel Marufo (Oct 03)

Eoin

Re: Platform specific error codes. Eoin (Oct 04)

Erez Metula

RE: [WEB SECURITY] Re: SQL In the Request Erez Metula (Oct 05)

Ferruh Mavituna

XSS Shell v0.3.9 Ferruh Mavituna (Nov 05)

Frank Piessens

Preliminary Call For Papers: OWASP 2007 Europe Frank Piessens (Dec 22)

Gunnar Rene Øie

Re: Why doesn't Amazon enforce a password policy? Gunnar Rene Øie (Nov 01)
Re: Why doesn't Amazon enforce a password policy? Gunnar Rene Øie (Nov 01)

Hemil

Re: Files upload security considerations Hemil (Nov 11)

James Strassburg

Why doesn't Amazon enforce a password policy? James Strassburg (Oct 27)
OWASP Report Generator (v0.75 corrupt on SourceForge?) James Strassburg (Oct 20)
RE: Why doesn't Amazon enforce a password policy? James Strassburg (Nov 01)

Jamie Riden

Re: What problem have this Rijndael(.NET&PHP) code? Jamie Riden (Dec 18)
Re: Why doesn't Amazon enforce a password policy? Jamie Riden (Nov 01)

Jan P. Monsch

Ruining Security with java.util.Random Jan P. Monsch (Dec 18)

Jason Gregson

RE: Why doesn't Amazon enforce a password policy? Jason Gregson (Nov 01)

Jeff Moss

Black Hat CFP, Registration, and Announcements for October Jeff Moss (Oct 15)

Jeff Robertson

Re: [WEB SECURITY] Java Swing Application Security Jeff Robertson (Nov 16)
RE: [WEB SECURITY] Re: SQL In the Request Jeff Robertson (Oct 09)
RE: [WEB SECURITY] Re: SQL In the Request Jeff Robertson (Oct 09)
Re: Why doesn't Amazon enforce a password policy? Jeff Robertson (Nov 01)
Re: Why doesn't Amazon enforce a password policy? Jeff Robertson (Nov 01)

Joshua Perrymon

RE: XSS - how to run script Joshua Perrymon (Oct 19)

Manh Tho

Call for papers: ARES 2007 submission deadline approaches in 2 weeks: 19-11-2006 Manh Tho (Nov 07)

Mark Mcdonald

FW: XML File Inclusion and Path Traversal Attacks (was RE: XML Port Scanning) Mark Mcdonald (Oct 01)

Martin Johns

Re: ERRATA (Re: "Host header cannot be trusted as an anti anti DNS-pinning measure") Martin Johns (Dec 26)
XSS caused by Greasemonkey userscript Martin Johns (Dec 29)

Matteo Meucci

OWASP Testing Guide v2: let's start! (Call for participation) Matteo Meucci (Oct 09)

Matt Fisher

RE: Magic Quotes Matt Fisher (Oct 11)

Maxime Ducharme

RE: [Full-disclosure] SQL Injection with cursors? Maxime Ducharme (Nov 08)
RE: How to find the login name of a user accessing my website Maxime Ducharme (Nov 06)

Michael Eddington

.NET Web Service Validation Michael Eddington (Nov 06)
New version of Reform encoding library Michael Eddington (Nov 06)

Mike Gibson

Fuzzer Sources Mike Gibson (Oct 27)

my.info.lists () gmail com

Re: forbid non-secure proxy access my.info.lists () gmail com (Dec 15)

Nick Owen

RE: 2-factor auth for all Nick Owen (Oct 27)
Re: 2-factor auth for all Nick Owen (Oct 27)

Nish Bhalla

RE: XML File Inclusion and Path Traversal Attacks (was RE: XML Port Scanning) Nish Bhalla (Oct 01)
RE: [WEB SECURITY] Re: SQL In the Request Nish Bhalla (Oct 05)

Ory Segal

RE: [WEB SECURITY] Re: SQL In the Request Ory Segal (Oct 05)

pagvac

Re: Enumerate Web Virtual Site pagvac (Nov 19)

Paul Theriault

SIFT Web Services Security Testing Framework Paul Theriault (Nov 13)

Peter Butler

Re: Files upload security considerations Peter Butler (Nov 11)

Peter Conrad

Re: What problem have this Rijndael(.NET&PHP) code? Peter Conrad (Dec 18)
Re: Why doesn't Amazon enforce a password policy? Peter Conrad (Oct 30)

Praburaajan

HITBSecConf2006 CTF Source code and daemons Praburaajan (Oct 09)
HITBSecConf2007 - Dubai - Call for Papers now open! Praburaajan (Dec 18)

Rick Zhong

Re: [WEB SECURITY] Re: SQL In the Request Rick Zhong (Oct 09)

robert

WASC-Announcement: MX Injection - Capturing and Exploiting Hidden Mail Servers By Vicente Aguilera Diaz robert (Dec 11)
WASC Articles Project - Call for Participants robert (Dec 11)

Robin Wood

platform/language crib sheets Robin Wood (Dec 11)

Rory McCune

Re: Search Engine for Security and eSecurity Community Rory McCune (Nov 01)

Rowland

RE: [WEB SECURITY] Re: SQL In the Request Rowland (Oct 09)

RSnake

Fierce domain scan released RSnake (Dec 31)
Re: [WEB SECURITY] Session hijacking via XSS vuln requring POST impossible? RSnake (Dec 18)

Ryan Barnett

Re: Google code search Ryan Barnett (Oct 05)

Saqib Ali

Full Disc Encryption use and implementation strategy Discussion Forum Saqib Ali (Oct 02)
Search Engine for Security and eSecurity Community Saqib Ali (Oct 27)
2-factor auth for all Saqib Ali (Oct 23)
Re: 2-factor auth for all Saqib Ali (Oct 27)
Re: Search Engine for Security and eSecurity Community Saqib Ali (Nov 01)
Re: 2-factor auth for all Saqib Ali (Oct 27)

Scott C. Sanchez

Re: What problem have this Rijndael(.NET&PHP) code? Scott C. Sanchez (Dec 18)

Sharma, Amit

Is URL encoding required. Sharma, Amit (Nov 27)

Stefano Di Paola

Re: Search Engine for Security and eSecurity Community Stefano Di Paola (Nov 01)

Stephen de Vries

Google code search Stephen de Vries (Oct 04)

Steve Slater

Re: Magic Quotes Steve Slater (Oct 11)

Tal Argoni

XSS - how to run script Tal Argoni (Oct 19)

Tomek Perlak

Re: Magic Quotes Tomek Perlak (Oct 10)

Tom Whiting

Re: Why doesn't Amazon enforce a password policy? Tom Whiting (Nov 01)

trespiko

forbid non-secure proxy access trespiko (Dec 14)

Vlad

Sharepoint and .Net Vlad (Oct 03)

Zapotek

Re: Platform specific error codes. Zapotek (Oct 04)
Re: Google code search Zapotek (Oct 05)
Platform specific error codes. Zapotek (Oct 03)

Previous period

Next period