tag:blogger.com,1999:blog-13756280.post5145555181386573461..comments2024-02-08T03:44:23.780-08:00Comments on Jeremiah Grossman: Vulnerability Assessment, When do we stop looking?Jeremiah Grossmanhttp://www.blogger.com/profile/05017778127841311186noreply@blogger.comBlogger6125tag:blogger.com,1999:blog-13756280.post-60468527197132517782013-09-16T08:05:11.349-07:002013-09-16T08:05:11.349-07:00Nice post, very helpful for us.I will come back he...Nice post, very helpful for us.I will come back here again & again...:)<br /><br /><a href="http://cybersecurityinc.com/vulnerability-assessment/" rel="nofollow">vulnerability assessment</a><br /><a href="http://cybersecurityinc.com/vulnerability-assessment/" rel="nofollow">penetration testing</a>cybersecurityinchttps://www.blogger.com/profile/00519865777521960579noreply@blogger.comtag:blogger.com,1999:blog-13756280.post-82581331796814737082007-04-09T11:14:00.000-07:002007-04-09T11:14:00.000-07:00thats cool to me, i know XSS and how it works, tha...thats cool to me, i know XSS and how it works, that is why i would love to get deeper by buying this book. I need to show some love to you guys too. I read rsnake's forum, everyday u see different topic on XSS, its gets a little messy, but still i managed to read and understand it. This book will definitely benefit me deeper.<BR/><BR/>http://hackathology.blogspot.comAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-13756280.post-73037436244305806822007-04-09T10:46:00.000-07:002007-04-09T10:46:00.000-07:00Hey hackathology, yah, we're nearing completion an...Hey hackathology, yah, we're nearing completion and in the last stages of book development. Not sure exactly when it'll be on the shelves, but REALLY soon. The book will focus almost solely on XSS, not exact on the whole of webappsec, so it'll assume a lot of knowledge. You'll probably want to pick up another book or two in the space to get a feel for the topic first.Jeremiah Grossmanhttps://www.blogger.com/profile/05017778127841311186noreply@blogger.comtag:blogger.com,1999:blog-13756280.post-73266288436998274972007-04-08T01:47:00.000-07:002007-04-08T01:47:00.000-07:00hey jeremiah, i saw from the rsnake forum that you...hey jeremiah, i saw from the rsnake forum that your book had been released. Is it out on the bookshelves yet? I would love to get a copy and start exploring more from there. I am a network security guy so my main focus will be in that area. As for web, i definitely want to explore more, but not so much in scripting and programming, just knowing what can be exploited and the methodology behind it is good for me though. Of course, i know the basics, but i would love to go deeper. I will definitely grab a copy of it.<BR/><BR/>http://hackathology.blogspot.comAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-13756280.post-22326764124552132112007-04-07T20:50:00.000-07:002007-04-07T20:50:00.000-07:00@hackathology: Hey, glad you liked it. JavaScript ...@hackathology: Hey, glad you liked it. JavaScript is a big language and it takes time. A lot of my background is web development oriented, starting way back in like 94. And Im still learning stuff about it. As far as webappsec goes in general, two things I highly recommend: Build complex websites for fun to learn the environment. Then try to VA as many websites as you can, legally of course. :)Jeremiah Grossmanhttps://www.blogger.com/profile/05017778127841311186noreply@blogger.comtag:blogger.com,1999:blog-13756280.post-71581687124760660852007-04-07T00:50:00.000-07:002007-04-07T00:50:00.000-07:00Jeremiah, thats a very interesting article write u...Jeremiah, thats a very interesting article write up. Although i had problems learning scripting in javascript, still web app security is one area i love to explore more. I wont say i am very good, but i had done multiple VA and is quite used to testing web applications now. Your post on this will seperate the kiddies and the experts.<BR/><BR/>http://hackathology.blogspot.comAnonymousnoreply@blogger.com