Aug 23rd, 2006

Comments: 0
Category: Misc.
Read More

Great Dictionary Site

GData: An Online MD5 Hash Database I’ve been looking for a good site to get password dictionaries from for ages. Don’t know why this one doesn’t seem to show well on google searches, but the dictionaries for download there look good to me

Aug 14th, 2006

Comments: 0
Category: Penetration Testing
Read More

Walkthough of an XSS attack

The XSS Vulnerability” href=”http://www.informit.com/articles/article.asp?p=603037&rl=1″>XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > The XSS Vulnerability Some more reading for me.

Aug 2nd, 2006

Comments: 0
Category: Software Security
Read More

A Process for Performing Security Code Reviews Article on Performing security code reviews, one to read when I get a chance.

Jul 13th, 2006

Comments: 0
Category: Misc.
Read More

Vast quantities of Coolness from VMware

– VMTN Virtual Appliances Directory The vmware virtual appliances directory looks very very cool to me. It’s a collection of pre-installed pre-configured virtual machines setup for specific purposes… need a media-wiki server… no problem… need a network security scannng server … no problem… just download and go… And if you combine it with the release […]

Jul 11th, 2006

Comments: 0
Category: Phishing
Read More

2-Factor Auth in banking Attacked

Security Fix – Brian Krebs on Computer and Internet Security – (washingtonpost.com) Post about a MITM attack on Citibanks two-factor authentication system. The relaying of error messages from Citi by the attacker is a nice touch as it makes it seem a lot more legitimate… Well not really a surprise that the attackers have worked […]