Trustwave Protections Deployed: MS11-083
Last week, it was Microsoft's Patch Tuesday! For November, Microsoft released one "critical" ...
Read MoreTrustwave Protections Deployed: Duqu
Recent reports of the zero-day exploit found in the Win32k True Type Font Parsing engine and ...
Read MoreNickiSpy.C - Android Malware Analysis Demo
Recently I got the chance to dig into a nice little piece of Android spyware, commonly known as ...
Read MoreModSecurity Advanced Topic of the Week: Commercial Rules Overview
As you may have heard, Trustwave recently announced the availability of commercial rules and ...
Read MoreInteresting Authentication Bypass Vulnerabilities
Recently I've been writing a talk called "Authentication Bypass Zoo: Pwnage and Poetry 2" which ...
Read MoreGoogle Android Focus Stealing Vulnerability Demo
Way back in August 2011, myself and Sean Schulte gave a presentation at DEF CON 19 called "This is ...
Read MoreTWSL2011-013: Multiple Vulnerabilities in IceWarp Mail Server
The Spiderlabs team at Trustwave published a new advisory today which detail issues discovered in ...
Read MoreTrustwave Releases New ModSecurity Rules and Support
ModSecurity is the most popular open source web application firewall (WAF) deployed today. We ...
Read MoreBlinkie Lights howto by nosteve
At DEF CON 19, I showed a project that uses an LED matrix to display network sessions. The goal of ...
Read MoreAdvanced BNAT in the Wild
Just this week, we were asked to help out with some "TCP weirdness" that was identified out on a ...
Read MoreModSecurity Advanced Topic of the Week: Remote File Inclusion Attack Detection
Remote file inclusion (RFI) is a popular technique used to attack web applications (especially php ...
Read MoreMorto: More than Meets the Eye
There's been a lot of talk the past week or so about Morto. For those unfamiliar or unaware, Morto ...
Read MoreImplementing AppSensor Detection Points in ModSecurity
This is a follow-up to a previous blog post entitled "Real-time Application Profiling" that ...
Read MoreDetecting Malice with ModSecurity: (Updated) CSRF Attacks
UPDATE - since this original post, we added new data manipulation capabilities to v2.6.0 with the ...
Read More(Updated) Mitigation of Apache Range Header DoS Attack
Update After deeper research into the underlying vulnerability and analyzing customer traffic, ...
Read MoreModSecurity Advanced Topic of the Week: (Updated) Exception Handling
UPDATE - since this original post, we added new exception handling capabilities to v2.6.0 which are ...
Read MoreWhat Do Bug Bounties Cover?
Over the past few days in the UK we have been bombarded with arguments and debates over the use of ...
Read MoreModSecurity Advanced Topic of the Week: Automated Virtual Patching Script
Automated Virtual Patching Example Script
Read MoreModSecurity Advanced Topic of the Week: Audit Log Searching with ModGrep
This is an updated section from my previous book Preventing Web Attacks with Apache and discusses a ...
Read MoreAuto-BAHN: Using Smart phones to create emergency, ad hoc networks
Thomas Wilhelm, Sr. Security Consultant at Trustwave SpiderLabs, revealed a proof of concept this ...
Read MoreTWSL2011-008: Focus Stealing Vulnerability in Android
The SpiderLabs team at Trustwave published a new advisory today, which details an issue identified ...
Read MoreRegression Workaround for TWSL2011-007: The iOS SSL Validation Vulnerability (UPDATED)
Trustwave SpiderLabs recently released an advisory (TWSL2011-007) regarding improper x509 ...
Read MoreNew Edition of SpiderLabs Radio - Interviews with SpiderLabs DEF CON Speakers
This month, Zack Fasel and Tom Mackenzie interview the SpiderLabs Team Members presenting at DEF ...
Read MoreDetecting Malice with ModSecurity: HoneyTraps
This week's installment of Detecting Malice with ModSecurity will discuss how to implement ...
Read MoreLive ModSecurity Challenges at Blackhat Arsenal
ModSecurity is participating in the upcoming Blackhat Arsenal Tools Demo next week in Las Vegas.
Read MoreModSecurity SQL Injection Challenge: Lessons Learned
This is a post-mortem blog post to discuss the successful Level II evasions found by participants ...
Read More