RSS ha.ckers.org web application security lab

web application security blog
  Subscribe it  
iNeZha robot will deliver the feed updates to your IM or Email in real-time

Delivery Demo of iNezha MSN Robot

Subscribe it
iNezha robot say:
ha.ckers.org web application security lab
Title:HTTP Verb Brute Forcing
Summary:I read a few interesting posts here and here regarding brute forcing HTTP verbs. The F5 post suggest... (1/6/2009 1:34:22 AM)
Subscribe it

About "ha.ckers.org web application security lab"

Author:Claim it now
Website:http://ha.ckers.org/blog
RSS:http://ha.ckers.org/blog/feed/
Update interval: 3 days
Last update: 4 days ago
Tags:
Subscribers:1
Shared Subscribers:1
Bookmarked or Shared Articles:0  

Recent contents of "ha.ckers.org web application security lab"

HTTP Verb Brute Forcing 4 days ago Read More http://ha.ckers.org/blog/20090105/http-verb-brute-forcing/
I read a few interesting posts here and here regarding brute forcing HTTP verbs. The F5 post suggested that it is possible to thwart people who are looking for what options you support by giving a ...
ToS Abuse Abuse 24 days ago Read More http://ha.ckers.org/blog/20081216/tos-abuse-abuse/
Sorry I haven’t posted in a while. Not for lack of wanting to, but alas, the real world keeps pulling me away from the fun stuff. Maybe I’ll get a chance to post more over the holiday. No this titl...
Browser Power Consumption 39 days ago Read More http://ha.ckers.org/blog/20081201/browser-power-consumption/
This isn’t like most the other posts I do on here since it’s only tangentially security related, but it was a fun experiment that we spent a few days working on over the last few weeks. We were res...
HTTPOnly Fix In MSXML 59 days ago Read More http://ha.ckers.org/blog/20081111/httponly-fix-in-msxml/
I’m happy to announce that Microsoft has released MS08-069 today. It’s got a lot of changes in it, but one in particular that I’ve been tracking for about a year now. MSXML has made a change so tha...
Lifelock Protects You from Clickjacking 67 days ago Read More http://ha.ckers.org/blog/20081103/lifelock-protects-you-from-clickjacking/
Well, now I’ve seen everything. Just when I didn’t think I could ever be amazed more by attempts of overselling and snake oil, I get hit with this. Apparently Lifelock now purports to protect you f...
Security Expert Rehabilitation 79 days ago Read More http://ha.ckers.org/blog/20081022/security-expert-rehabilitation/
In light of my last gloom and doom post, I wanted to turn the tables and add some humor. A while back a bunch of us came up with the concept of a security expert rehabilitation program. Once we giv...
Apocalyptic Vulnerability Percentages - FUD 101 89 days ago Read More http://ha.ckers.org/blog/20081012/apocalyptic-vulnerability-percentages-fud-101/
I’ve spent a long time in the trenches and recently I’ve been getting more and more jaded - if that’s even possible. I’m sure at least once a week someone in the office hears me utter the nearly co...
More McAfee Snakeoil Ranting 91 days ago Read More http://ha.ckers.org/blog/20081010/more-mcafee-snakeoil-ranting/
I know a lot of people are just tired of the same old PCI ASV rant that really surfaced last year, but I got an email today and I thought it was worth a re-post. Mike Bailey sent this over and I re...
Clickjacking Details 94 days ago Read More http://ha.ckers.org/blog/20081007/clickjacking-details/
Today is the day we can finally start talking about clickjacking. This is just meant to be a quick post that you can use as a reference sheet. It is not a thorough advisory of every site/vendor/plu...
Tomcat SSL Fingerprinting 96 days ago Read More http://ha.ckers.org/blog/20081005/tomcat-ssl-fingerprinting/
I ran into this a few weeks ago and I thought it was just so silly I had to post it. If you telnet to an SSL/TLS enabled port and type in “GET / HTTP/1.0″ and hit enter it immediately responds with...
12345678910Next