Jeremiah Grossman

CEO of Bit Discovery, Professional Hacker, Black Belt in Brazilian Jiu-Jitsu, Off-Road Race Car Driver, Founder of WhiteHat Security, and Maui resident.

Friday, November 06, 2009

Best of Application Security (Friday, Nov. 6)

Ten of Application Security industry's coolest, most interesting, important, and entertaining links from the past week -- in no particular order. Regularly released until year end. Then the Best of Application Security 2009 will be selected!
  • Another fine method to exploit SQL Injection and bypass WAF
  • Security and Facebook Platform
  • When Is More Important Than Where in Web Application Security
  • Apple - XSS Attack
  • Cross-subdomain Cookie Attacks
  • PILOT: Production in lieu of testing (AgoraCart FAIL)
  • Facebook and MySpace security: backdoor wide open, millions of accounts exploitable
  • SSL and TLS Authentication Gap vulnerability discovered
  • Using Blended Browser Threats involving Chrome to steal files on your computer
  • LinkedIN With 'Bill Gates'
Posted by Jeremiah Grossman at 12:04 PM

No comments:

Post a Comment

Newer Post Older Post Home
Subscribe to: Post Comments (Atom)

Contributors

  • Hannah Sanders
  • Jeremiah Grossman

Links

  • Jeremiah's Main Website
  • Twitter Profile
  • Facebook Profile
  • LinkedIn Profile

Total Pageviews

Profile

Profile

TEDxMaui

TEDxMaui

Brazilian Jiu-Jitsu

Brazilian Jiu-Jitsu

BobbleJer

BobbleJer

My 1964 Lincoln Continental

My 1964 Lincoln Continental

Subscribe

Posts
Atom
Posts
Comments
Atom
Comments

Blog Archive

  • ►  2020 (2)
    • ►  December (2)
  • ►  2018 (5)
    • ►  August (1)
    • ►  July (1)
    • ►  May (1)
    • ►  March (2)
  • ►  2017 (3)
    • ►  April (1)
    • ►  February (2)
  • ►  2016 (7)
    • ►  October (1)
    • ►  June (1)
    • ►  May (4)
    • ►  March (1)
  • ►  2013 (1)
    • ►  January (1)
  • ►  2012 (2)
    • ►  April (1)
    • ►  January (1)
  • ►  2011 (18)
    • ►  December (1)
    • ►  June (1)
    • ►  May (1)
    • ►  March (3)
    • ►  February (5)
    • ►  January (7)
  • ►  2010 (62)
    • ►  December (9)
    • ►  November (2)
    • ►  October (1)
    • ►  September (3)
    • ►  August (2)
    • ►  July (5)
    • ►  June (5)
    • ►  May (3)
    • ►  April (3)
    • ►  March (6)
    • ►  February (12)
    • ►  January (11)
  • ▼  2009 (75)
    • ►  December (7)
    • ▼  November (5)
      • Best of Application Security (Friday, Nov. 27)
      • Best of Application Security (Friday, Nov. 20)
      • Best of Application Security (Friday, Nov. 13)
      • OWASP Top 10 (2010 release candidate 1)
      • Best of Application Security (Friday, Nov. 6)
    • ►  October (8)
    • ►  September (5)
    • ►  August (11)
    • ►  July (6)
    • ►  June (4)
    • ►  May (5)
    • ►  April (4)
    • ►  March (4)
    • ►  February (5)
    • ►  January (11)
  • ►  2008 (117)
    • ►  December (6)
    • ►  November (2)
    • ►  October (2)
    • ►  September (8)
    • ►  August (8)
    • ►  July (10)
    • ►  June (16)
    • ►  May (16)
    • ►  April (19)
    • ►  March (11)
    • ►  February (4)
    • ►  January (15)
  • ►  2007 (195)
    • ►  December (5)
    • ►  November (19)
    • ►  October (11)
    • ►  September (10)
    • ►  August (13)
    • ►  July (22)
    • ►  June (17)
    • ►  May (25)
    • ►  April (18)
    • ►  March (21)
    • ►  February (12)
    • ►  January (22)
  • ►  2006 (123)
    • ►  December (11)
    • ►  November (21)
    • ►  October (20)
    • ►  September (29)
    • ►  August (16)
    • ►  July (15)
    • ►  June (3)
    • ►  January (8)
  • ►  2005 (99)
    • ►  November (2)
    • ►  October (3)
    • ►  September (5)
    • ►  August (9)
    • ►  July (14)
    • ►  June (15)
    • ►  May (13)
    • ►  April (9)
    • ►  March (11)
    • ►  February (7)
    • ►  January (11)
  • ►  2004 (14)
    • ►  December (7)
    • ►  November (6)
    • ►  June (1)
  • ►  2001 (2)
    • ►  November (1)
    • ►  March (1)
Picture Window theme. Powered by Blogger.