The HP Security laboratory
Browse by Tags
All Tags
»
XSS Ajax
Jikto
malware
Shmoocon
worm
Jikto in the wild
02 April 07 12:19 PM
|
Billy
|
12 Comments
It appears that the source code to Jikto is in the wild. I suppose it was only a matter of time, even though as you will see SPI to extreme steps to prevent this from happening. As my Shmoocon presentation slides discuss , Jikto bypasses the "Same
Read More...
XSS+Ajax worm attacking Yahoo mail users
13 June 06 04:58 PM
|
Billy
|
0 Comments
At the beginning of the week, Yahoo was attacked by a worm that propagates using nothing but JavaScript and Ajax. I've been giving interviews to the press all day and talked with the FBI about the worm, so let me take a moment to fill you all in.
Read More...
Search
Go
This Blog
Home
Email
Tags
Ajax
Ajax Security Book
AJAXWorld
ASP.NET
book
Bookmark
conferences
Firefox
hacked
IE
information disclosure
input validation
iPhone
JavaScript
Jikto
JSON
malware
Mozilla Rhino
Password Security
phishing
Privacy
product comparison
Safari
security
Shmoocon
testing methodology
webcast
worm
XSS
XSS Ajax
Navigation
Home
Blogs
Forums
Photos
Downloads
Archives
January 2008 (1)
December 2007 (2)
November 2007 (5)
October 2007 (1)
August 2007 (2)
July 2007 (2)
April 2007 (1)
March 2007 (1)
January 2007 (2)
December 2006 (1)
November 2006 (1)
October 2006 (2)
July 2006 (4)
June 2006 (5)
May 2006 (1)
April 2006 (2)
Syndication
RSS 2.0
Atom 1.0