This paper sheds light on the hyper linking issues observed during penetration testing of web based enterprise applications. This concept can be used to bypass standard XSS filters by creating a malicious Microsoft word document.
Download the Paper at : HERE
Enjoy !
skip to main |
skip to sidebar
Targeted Cyber Attacks !
This tangential research relates to my avocation.
Pages
About Me !
Aditya K Sood
Security Practitioner and Researcher
Website Network!
Book !
Targeted Cyber Attacks !
Disclaimer !
The opinions and views expressed in this blog are completely based on my independent research and do not relate to any of my previous or present employers.
Malware at Stake
Blog Archive
Twitter Feed !
Labels
%3F
(1)
Android Malware
(1)
Apache
(2)
Big IP
(1)
Botnets
(2)
Browser Security
(1)
Browser Security.
(2)
Bypassing XSS Auditor
(1)
CCTV Cameras
(1)
CCTV Hacking
(1)
Chinese Malware
(1)
Chrome XSS Auditor Bypass
(1)
ClearSCADA
(1)
Contrarisk
(1)
Damballa Inc
(1)
DEFCON
(1)
Facebook infections
(1)
Fact or Fiction
(1)
File Extractor
(1)
Frame Injection
(1)
FrontPage
(1)
Google Chrome
(1)
Hacking
(4)
Hacking Jenkins
(1)
HTTP Protocol
(1)
Insecure Design
(2)
Intel Cross-site Scripting
(1)
Internal IP Disclosure
(1)
Internet Explorer Filter
(1)
Interop
(1)
Jenkins
(2)
Jenkins Security
(2)
Malware
(2)
Misconfiguration
(1)
Misconfiguration issues
(1)
Mobile Bots
(1)
Mobile Malware
(1)
Mod Security
(1)
Modsecurity rules
(1)
No escaping
(1)
Packet Capture
(1)
Penetration Testing
(3)
penetration testing FrontPage
(1)
penetration testing sharepoint.
(1)
Podcast
(1)
protection bypass
(1)
Responsible Disclosure
(2)
Revision 3
(1)
Right to Privacy !
(1)
Scada security
(1)
Security
(3)
Set-Cookie
(1)
SharePoint
(1)
Social Network Malware
(1)
Socioware
(1)
Sparty
(1)
TCPExtract
(1)
TCPxtract
(1)
ToorCon
(1)
Twitter infections
(1)
UBM
(1)
URL rewriting
(1)
Via
(1)
Vmware ESX
(1)
VMware GSX
(1)
VMware Security
(1)
vulnerability
(1)
Wireless Keys
(1)
Wlan keys dumping
(1)
Wordpress
(1)
X-Cache Hit
(1)
X-Cache Miss
(1)
XSS
(5)
XSS Auditor
(1)
XSS Bypass
(1)
XSS in centralops.net
(1)
Blogger Templates by DeluxeTemplates.net
0 comments:
Post a Comment