Easy DOM-based XSS detection via Regexes
If you are interested in finding DOM-based XSS, you must have knowledge of ...
Read MoreIf you are interested in finding DOM-based XSS, you must have knowledge of ...
Read MoreThis weeks episode of SpiderLabs Radio hosted by Space Rogue covers Bit9 Looses Bits, Adobe Adobe ...
Read MoreIn a previous Honeypot Alert blog post, I showed an example of attackers using LFI attacks to ...
Read MoreOne of the great things about working within SpiderLabs is that we prefer to use our own tools ...
Read MoreThis week's episode of SpiderLabs Radio hosted by Space Rogue covers Twitter breach, Java again, ...
Read MoreClient-Side JS Overriding Limitations In a previous blog post, I outlined how you could use ...
Read MoreThe Advance Notification of Patch Tuesday from Microsoft has twelve bulletins listed for this ...
Read MoreFor those of you that missed it last time, CryptOMG is a configurable CTF-style test bed that ...
Read MoreModSecurity for IIS Stable Release As part of our recent release of ModSecurity v2.7.2, not only ...
Read MoreThis weeks episode of SpiderLabs Radio hosted by Space Rogue covers The New York Times, Anonymous ...
Read MoreIn a previous blog post, I outlined some ModSecurity defenses to help protect Ruby on Rails users ...
Read MoreThis weeks episode of SpiderLabs Radio hosted by Space Rogue covers the redirect of MIT.edu, Quebec ...
Read MoreA lot has been happening with Responder lately!
Read MoreThis week's episode of SpiderLabs Radio hosted by Space Rogue covers Aaron Swartz and a movement to ...
Read More"Cryptography is typically bypassed, not penetrated." – Adi Shamir FAITH IN THE ARCANE When I tell ...
Read MoreQ: What's going on? People are talking about some Java 0daywhich threatens the whole world… Bring ...
Read MoreIt's now official, there is another bulletin (MS13-008) release for the month of January and ...
Read MoreWe are back with another episode of SpiderLabs Radio hosted by Space Rogue. This week's news covers ...
Read MoreThere is big trouble in Ruby on Rails (RoR) land... The issue is related to XML parsing of YAML ...
Read MoreToday @Kafeine was the first to announce the new Java 0day. This 0day allows an attacker to execute ...
Read MoreThis is a post for those attempting to solve the Crypto contest I introduced a couple weeks ago. ...
Read MoreI had lunch today at a great little Cajun restaurant in Chicago called Heaven on Seven, so named ...
Read MoreAs cliché as it may sound, security is done in layers and so, using our generic rules, we were able ...
Read MoreWe are back with another episode of SpiderLabs Radio hosted by Space Rogue. This weeks news covers ...
Read MoreA little while ago I was fortunate enough to get ahold of a sample that was dropped on a system ...
Read MoreIf you were hoping for a nice relaxing Patch Tuesday after the holidays, well, sorry to disappoint ...
Read More