XML External Entity (XXE) Execution Disabled in ModSecurity v2.7.3
On February 27, 2013, the ModSecurity project team was notified by security researchers from ...
Read MoreOn February 27, 2013, the ModSecurity project team was notified by security researchers from ...
Read MoreThis week's episode of SpiderLabs Radio hosted by Space Rogue covers HostGator, Twitter, SPAMHaus, ...
Read MoreThroughout Trustwave SpiderLabs' many forensicinvestigations, we often stumble upon malicious ...
Read MoreNote that the vulnerability described here was fixed by Zemanta.
Read MoreThis week's episode of SpiderLabs Radio hosted by Space Rogue covers Schnucks, Linode, Pirate Bay, ...
Read MoreA couple of weeks ago I posted Part 1 of Cracking IKE, detailing some useful techniques when ...
Read MoreIt's been a short while, but we find ourselves again with a Java vulnerability in our hands, this ...
Read MoreIn our latest Global Security Report, we noted malicious spam campaigns were on the increase, and ...
Read MoreGrowing up I read every book my library had to offer by Jules Verne and Isaac Asimov. These and ...
Read MoreAs has been reported by many news outlets , WordPress login pages have been under a heavy brute ...
Read MoreThis week's episode of SpiderLabs Radio hosted by Space Rogue covers OpIsreal, Anon AUS, LulzSec, 6 ...
Read MoreMicrosoft has recalled part of an update that was release earlier this week as part of April's ...
Read MoreOne of the many useful features of a web application firewall (WAF) is its ability to add on ...
Read MoreAs security researchers, our virtual journey in revealing new threats on the web is never-ending. ...
Read MoreThis month we have nine bulletins, two critical covering just fourteen CVEs. The critical bulletins ...
Read MoreThis week's episode of SpiderLabs Radio hosted by Space Rogue covers Carberp, WarZ, Japan, Exp0sed ...
Read MoreThe ModSecurity web application firewall project has grown a lot in the past year including, ...
Read MoreTrustwave is a corporate sponsor of the National Collegiate Cyber Defense Competition (CCDC) where ...
Read MoreAh, April, for most of us the weather is turning warm, birds return to their trees, flowers start ...
Read MoreLet's talk about some targeted attacks where session management can be targeted to side step multi ...
Read MoreThis little post is going to talk about how authentication goes beyond just usernames and passwords.
Read MoreThis week's episode of SpiderLabs Radio hosted by Space Rogue covers OMG DDoS Nukes Take out Net!, ...
Read MoreAll too often during pen tests I still find VPN endpoints configured to allow insecure Aggressive ...
Read MoreSOURCE Boston is coming up in April, and Mike Ryan and I are giving a presentation about making ...
Read MoreFor several years before July 2012 takedown, Grum was one of the notorious spam botnets and at one ...
Read MoreThis week's episode of SpiderLabs Radio hosted by Space Rogue covers Korea, teamSpy, Scan all the ...
Read MoreIn the past few months, we have had quite a few social engineering and client-side penetration ...
Read MoreOver the last year or so, I've noticed 2 ports appearing more frequently during internal ...
Read More