How to kick ass
This post alone rendered a place for this on my blogroll!
Monthly Archive June, 2007
XML being used by malware – We said it!!!
My friend André Fucs pointed me towards this post from the McAfee Avert Labs blog. They’ve found a trojan controlled by XML messages. Another trend we mentioned in our Black Hat presentation. Next step, probably the signed XML messages.
Grossman on Web App Vuln Scanners
Jeremiah provides us some interesting comments on the effectiveness of Web Application security scanners for specific types of vulnerabilities. I remember when I used to perform pen tests on web applications that some things were identified in a way that it woul be very hard to achieve the same results with an automated tool. I [...]
