The Web Security Mailing List (2010 March)

• Date Index

• [WEB SECURITY] winAUTOPWN 2.2 - Introducing BSDAUTOPWN, QUAKER DOOMER
• [WEB SECURITY] [TOOL] New w3af release!, Andres Riancho
• [WEB SECURITY] WASC Web Hacking Incident Database (WHID) Project Status Update, Ryan Barnett
• [WEB SECURITY] DoS attacks via captchas, MustLive
• Re: [WEB SECURITY] The future of XSS attacks, MustLive
• [WEB SECURITY] Ruxcon 2010 Call For Papers, cfp
• [WEB SECURITY] Hackito Ergo Sum Conference (Paris 8-10 April 2010) : Schedule, Jonathan Brossard
• [WEB SECURITY] MultiByte Attacks, NeZa
  • Re: [WEB SECURITY] MultiByte Attacks, kuza55
  • RE: [WEB SECURITY] MultiByte Attacks, Chris Weber
• [WEB SECURITY] [HITB-Announce] HITBSecConf2009 - Malaysia Videos Released!, Hafez Kamal
• [WEB SECURITY] announcing skipfish, an automated web app security scanner, Michal Zalewski
  • Re: [WEB SECURITY] announcing skipfish, an automated web app security scanner, NeZa
• [WEB SECURITY] Cobol secure coding, neza0x
• [WEB SECURITY] SQL DB Structure Extraction vulnerabilities, MustLive
• [WEB SECURITY] market for training CISSPs how to code, Matt Parsons
  • Re: [WEB SECURITY] market for training CISSPs how to code, neza0x
    • RE: [WEB SECURITY] market for training CISSPs how to code, Ziots, Edward
      • Re: [WEB SECURITY] market for training CISSPs how to code, Niranjan Patil
      • Re: [WEB SECURITY] market for training CISSPs how to code, Eugene Kuznetsov
      • RE: [WEB SECURITY] market for training CISSPs how to code, JOSEPH D'COSTA /MOFFT/INFOTECH/VASHI
• [WEB SECURITY] blog post and open source vulnerabilities to blog about, Matt Parsons
  • [WEB SECURITY] Re: [SC-L] blog post and open source vulnerabilities to blog about, Jon Rose
  • [WEB SECURITY] RE: [SC-L] blog post and open source vulnerabilities to blog about, McGovern, James F. (P+C Technology)
    • RE: [WEB SECURITY] RE: [SC-L] blog post and open source vulnerabilities to blog about, Arshan Dabirsiaghi
      • RE: [WEB SECURITY] RE: [SC-L] blog post and open source vulnerabilities to blog about, Matt Parsons
      • RE: [WEB SECURITY] RE: [SC-L] blog post and open source vulnerabilities to blog about, Tom Stripling
      • [WEB SECURITY] Re: [SC-L] [WEB SECURITY] RE: blog post and open source vulnerabilities to blog about, Steven M. Christey
• [WEB SECURITY] [Tool] JBroFuzz 2.0 Fuzzer Released!, Yiannis Pavlosoglou
• [WEB SECURITY] Cookie Monster v1.6 released - Cookie Analysis, the Python way., Neaves, Tom
  • Re: [WEB SECURITY] Cookie Monster v1.6 released - Cookie Analysis, the Python way., Bil Corry
    • Re: [WEB SECURITY] Cookie Monster v1.6 released - Cookie Analysis, the Python way., Dirk Wetter
  • Re: [WEB SECURITY] Cookie Monster v1.6 released - Cookie Analysis, the Python way., gaz Heyes
• [WEB SECURITY] [Tool] sqlmap 0.8 released, Bernardo Damele A. G.
• [WEB SECURITY] [HITB-Announce] HITBSecConf2010 - Dubai Agenda Released, Hafez Kamal
• [WEB SECURITY] black berry security, Matt Parsons
• [WEB SECURITY] 2nd CfP: INTERNET 2010 || September 20-25, 2010 - Valencia, Spain, Sandra Sendra
• [WEB SECURITY] Hackvertor update, gaz Heyes
• [WEB SECURITY] JSReg now on acid, gaz Heyes
  • Re: [WEB SECURITY] JSReg now on acid, Stefano Di Paola
    • Re: [WEB SECURITY] JSReg now on acid, gaz Heyes
  • [WEB SECURITY] Re: JSReg now on acid, gaz Heyes
• [WEB SECURITY] Contributions to Browser Security, Marco Balduzzi
• [WEB SECURITY] Need a real Java web application (with constraints), Giovanni Vigna
  • RE: [WEB SECURITY] Need a real Java web application (with constraints), Ivan Buetler
    • Re: [WEB SECURITY] Need a real Java web application (with constraints), Giovanni Vigna
      • Re: [WEB SECURITY] Need a real Java web application (with constraints), Adam Muntner
      • RE: [WEB SECURITY] Need a real Java web application (with constraints), Matt Parsons
    • [WEB SECURITY] Question & Answer guide for web application security testing, Dheeraj Mahadik
      • RE: [WEB SECURITY] Question & Answer guide for web application security testing, Boberski, Michael [USA]
      • RE: [WEB SECURITY] Question & Answer guide for web application security testing, Calderon, Juan Carlos (GE, Corporate, consultant)
      • Re: [WEB SECURITY] Question & Answer guide for web application security testing, bugtraq
  • Re: [WEB SECURITY] Need a real Java web application (with constraints), Kåre Presttun
• [WEB SECURITY] Need a real Java web application with vulnerabilities, Holger Peine
  • [WEB SECURITY] Re: Need a real Java web application with vulnerabilities, Federico Maggi
  • [WEB SECURITY] Re: Need a real Java web application with vulnerabilities, Rogan Dawes
    • Re: [WEB SECURITY] Re: Need a real Java web application with vulnerabilities, Steve Pinkham
      • RE: [WEB SECURITY] Re: Need a real Java web application with vulnerabilities, Calderon, Juan Carlos (GE, Corporate, consultant)
  • [WEB SECURITY] Re: Need a real Java web application with vulnerabilities, Wagner Elias
  • [WEB SECURITY] Re: Need a real Java web application with vulnerabilities, Yu Qu
  • [WEB SECURITY] Re: Need a real Java web application with vulnerabilities, Kvetch
  • [WEB SECURITY] Re: Need a real Java web application with vulnerabilities, Marc-Andrà LaverdiÃre
  • Re: [WEB SECURITY] Need a real Java web application with vulnerabilities, Morrow Long
  • Re: [WEB SECURITY] Need a real Java web application with vulnerabilities, Chad Wilson
  • Re: [WEB SECURITY] Need a real Java web application with vulnerabilities, Andrew Petukhov
  • [WEB SECURITY] Re: Need a real Java web application with vulnerabilities, Morgan Reed
• [WEB SECURITY] Call for Papers: WorldCIS 2011!, Paul Kelly
• [WEB SECURITY] Call for Papers: The Second Workshop on E-Learning Security (ELS-2010), i-Society 2010
• Re: [WEB SECURITY] Request for information (Web application security testing), LP
• [WEB SECURITY] Use of artificial intelligence in web application security, muzzamil noor
  • Re: [WEB SECURITY] Use of artificial intelligence in web application security, Andrew Petukhov
• [WEB SECURITY] Imposter v0.9 download. Two whitepapers on file stealing using IE and attacking Google Gears released., Lavakumar Kuppan
• [WEB SECURITY] Is there a good report about usage of web app technologies?, Andrew Petukhov
  • Re: [WEB SECURITY] Is there a good report about usage of web app technologies?, Peter Lowe
• Re: [WEB SECURITY] Fingerprinting web applications (Joomla, Mediawiki and Wordpress), MustLive
• [WEB SECURITY] Good Article on HTML5 Security Features?, robert
  • Re: [WEB SECURITY] Good Article on HTML5 Security Features?, Yiannis Pavlosoglou
    • Re: [WEB SECURITY] Good Article on HTML5 Security Features?, Christian Frichot
• Re: [WEB SECURITY] Form-based HTTP Authentication Proof of Concept, Mike Duncan
  • Re: [WEB SECURITY] Form-based HTTP Authentication Proof of Concept, Timothy D\. Morgan
    • Re: [WEB SECURITY] Form-based HTTP Authentication Proof of Concept, Achim Hoffmann
      • Re: [WEB SECURITY] Form-based HTTP Authentication Proof of Concept, Timothy D\. Morgan
      • Re: [WEB SECURITY] Form-based HTTP Authentication Proof of Concept, Bil Corry
  • <Possible follow-ups>
  • Re: [WEB SECURITY] Form-based HTTP Authentication Proof of Concept, Timothy D\. Morgan
    • Re: [WEB SECURITY] Form-based HTTP Authentication Proof of Concept, SneakySimian
      • Re: [WEB SECURITY] Form-based HTTP Authentication Proof of Concept, Timothy D\. Morgan
• [WEB SECURITY] Call for papers: OWASP AppSec USA 2010 CA Sept 7-10, Neil Matatall