This week on the Man vs Web App Podcast we delve into the topic of Web Services. This includes SOAP, REST API’s or just Web […]
Podcast: Play in new window | Download (Duration: 34:50 — 32.2MB)
Subscribe: Apple Podcasts | RSS
Welcome to the Man vs WebApp Podcast! In this intro episode we do introductions and give a preview of the topics to come. The Man vs […]
Podcast: Play in new window | Download (Duration: 33:49 — 30.5MB)
Subscribe: Apple Podcasts | RSS
I spent the week at OWASP AppSec California in Santa Monica and had a great time! This is the 2nd year of having the event at […]
I’m looking forward to seeing everyone next week at OWASP AppSec California in Santa Monica and hearing some of the great talks planned, but I’m […]
I’m looking forward to reconnecting with everyone next week at AppSec California. I hope you’ll join me for my talk, Hackazon – Stop Hacking Like […]
This week a developer from Google released a new vulnerable test app named “Firing Range” which I have been digging into for the last few […]
I must confess to whomever it is relevant to do so (only God probably and He is likely bored with confessions by now) that I […]
At the recent OWASP AppSecUSA in Denver, Yair Amit and Adi Sharabani of Skycure presented a very informative overview of mobile security issues. There was […]
The 2nd annual Hackers Only Fantasy Football League is back! The HO-FFL is a great way for us IT security professionals to enjoy some time […]
Jim, Dan, and Michael have a lot of catching up to do. We talk about a lot of stuff because a lot of stuff has been […]
Podcast: Play in new window | Download (Duration: 1:00:33 — 87.2MB)
Subscribe: Apple Podcasts | RSS
SQL injection vulnerabilities have threatened application security for years. So why are they still quite common, despite the fact that we, as an industry, should […]
Knowing how to prevent a SQL injection vulnerability is only half the web application security battle. A multitude of factors come into play when it […]
The OWASP Top 10 list is well known as the industry standard for what matters in web security. The list, which ranks the most critical risks organizations face through their web applications, was recently updated. The 2013 Top 10 Listfeatures some incremental but noteworthy changes that point to the project’s maturity.
On the morning of the Twitter attack, I received this email: On one hand, I appreciate that Twitter was up front with their users, but […]
Most people are starting to realize that they need to start using more complex passwords, but generally believe: complex password = hard to remember This […]
All aboard the Pineapple Express, its a speeding bullet to the mobile backend! I’m looking forward to speaking at the upcoming B-Sides San Francisco. Most of […]
SQL Server Exploitation, Escalation, and Pilfering The general thesis of this talk I attended by Scott Sutherland and Antti Rantasaari from @NetSpi is that SQL Server is mostly […]
This talk, by Ofer Maor, CTO – Quotium (Follow on Twitter, @quotium) at 2012 AppSecUSA, addressed something that I see is an up and coming issue, interactive in-memory code […]
Continuing my series of write-ups on the talks I attended at AppSecUSA this year. Sherif Koussa (@Skoussa) who is a Principal Application Security Consultant at Software Secured presented this talk […]
Hmmm Lets see if I even remember how to enter this stuff anymore… Yeap you guessed it, we finally recorded another episode – WOOT! Show […]
Podcast: Play in new window | Download (Duration: 51:43 — 72.7MB)
Subscribe: Apple Podcasts | RSS
An ebay Site is Vulnerable to SQL Injection The eBay site in Southeast Asia is vulnerable to SQL Injection. https://www.upsploit.com/index.php/advisories/view/UPS-2012-0003 Sites such as ebay have […]
The smell of melting Blackberries/iPhones/Droids. You have probably smelled it before. You began testing an application and forgot to blacklist the “Contact Us” page so […]
Will there be a blackout? The Anonymous hacker group has announced that they will bring down 13 root DNS servers by DDoS. Is this possible? […]
Joomla vulnerability One of the world’s leading CMS solutions, Joomla (Version 2.5.1) was vulnerable to Blind SQL Injection. Joomla reported the vulnerability February 29th and […]
“Laws are like sausages. It’s better not to see them being made.” – Otto von Bismarck I’m not sure how many of you have kids or how […]
Copyright © 2023 | WordPress Theme by MH Themes