Pentester's Blog

Pentester's Blog: This tangential research relates to my avocation.

Monday, November 15, 2010

Responsible Disclosure - Oracle.com Redirection Vulnerability Video

The issue was reported to Oracle and was patched. This video simply shows the vulnerability.
Posted by Aditya K Sood at 11/15/2010 02:47:00 AM No comments:

Wednesday, November 10, 2010

ISSA Journal - JavaScript Infection Model


Check out my paper on JavaScript Infection Model published in November issue of ISSA journal.

https://www.issa.org/Members/Journal/
Posted by Aditya K Sood at 11/10/2010 06:55:00 PM No comments:

HackInThe Box EZine - DataCenter Hacking Paper / My Interview


Check out my interview and our paper on data-center hacking through helpdesk support systems.

http://magazine.hitb.org/issues/HITB-Ezine-Issue-004.pdf
Posted by Aditya K Sood at 11/10/2010 06:50:00 PM No comments:

ECCouncil Botnet Briefing Slides

EC Council - Botnet Briefings
View more presentations from Aditya K Sood.
Posted by Aditya K Sood at 11/10/2010 06:48:00 PM No comments:

HackerHalted Miami 2010 - Slides

Hacker Halted Miami , USA 2010
View more presentations from Aditya K Sood.
Posted by Aditya K Sood at 11/10/2010 06:46:00 PM No comments:

OWASP AppSec USA - Slides and Presentation

OWASP App Sec US - 2010
View more presentations from Aditya K Sood.


Aditya K. Sood, Bug-Alcoholic 2.0 - Untamed World of Web Vulnerabilities from AppSec USA 2010 on Vimeo.

Posted by Aditya K Sood at 11/10/2010 06:43:00 PM No comments:
Newer Posts Older Posts Home
Subscribe to: Posts (Atom)

Disclaimer

The opinions and views expressed on this blog are completely based on my independent research and do not relate to any of my previous or present employers.

About Me

Aditya K Sood : Security Practitioner.

SecNiche Labs : http://www.secniche.org

Subscribe

Posts
Atom
Posts
All Comments
Atom
All Comments

Labels

Hacking XSS Apache Botnets Responsible Disclosure %3F Android Malware Chinese Malware Contrarisk DEFCON Damballa Inc Facebook infections Interop Malware Misconfiguration issues Mobile Bots Mobile Malware Mod Security Modsecurity rules No escaping Penetration Testing Podcast Security Social Network Malware Socioware ToorCon Twitter infections UBM URL rewriting VMware GSX VMware Security Vmware ESX Wireless Keys Wlan keys dumping Wordpress

Malware at Stake

Loading...

Search This Blog

Loading...

Twitter Feed

Posts

  • (Pentest Apache #3) - The Nature of # (%23) Character | Mod Security Rules in Apache
  • Google Translate - Google User Content - File Uploading Cross - XSS and Design Stringency - A Talk
  • A Sweet Script to Dump Keys from Wlan Profiles - Post Exploitation (or Regular Use)
  • (Pentest Apache #2) - The Beauty of "%3F" and Apache's Inability | Wordpress | Mod Security
  • Anatomy of OpenSSL and Penetration Testing - Breaking Benjamin

Blog Archive

  • ►  2013 (9)
    • ►  May (2)
    • ►  April (2)
    • ►  March (1)
    • ►  January (4)
  • ►  2012 (11)
    • ►  November (1)
    • ►  October (1)
    • ►  July (2)
    • ►  June (1)
    • ►  May (3)
    • ►  April (1)
    • ►  February (2)
  • ►  2011 (16)
    • ►  December (2)
    • ►  September (2)
    • ►  August (9)
    • ►  July (1)
    • ►  April (1)
    • ►  March (1)
  • ▼  2010 (18)
    • ▼  November (6)
      • Responsible Disclosure - Oracle.com Redirection Vu...
      • ISSA Journal - JavaScript Infection Model
      • HackInThe Box EZine - DataCenter Hacking Paper / M...
      • ECCouncil Botnet Briefing Slides
      • HackerHalted Miami 2010 - Slides
      • OWASP AppSec USA - Slides and Presentation
    • ►  August (3)
    • ►  July (1)
    • ►  May (2)
    • ►  January (6)
  • ►  2009 (8)
    • ►  December (4)
    • ►  August (1)
    • ►  May (2)
    • ►  March (1)
Powered by Blogger.