Full Disclosure: Re: Am I missing anything ?

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: Am I missing anything ?

From: bugtraq () cgisecurity net
Date: Mon, 23 Jul 2007 13:21:25 -0400 (EDT)

I would advise checking out the Threat Classification by The Web Application Security Consortium
at http://www.webappsec.org/projects/threat/.

Version 2 is in the works and should be out in a month or so with MANY updates.

- Robert


Hi All,
   Just wondered if I am missing anything important. Am planning to give 
talk on web security.
Is there any other technique other than the following I have to speak 
about ?

1)XSS
2)CSRF
3)SQL Injection
4)AJAX/JSON hijacking
5)HTTP response splitting
6)RFI
7)CRLF
8)MITM

Thanks
Deepan

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Re: Am I missing anything ?, (continued)
- Re: Am I missing anything ? Trancer (Jul 23)
- Re: Am I missing anything ? Valdis . Kletnieks (Jul 23)
- Re: Am I missing anything ? J. Patterson Wicks (Jul 23)
- Re: Am I missing anything ? Carl Livitt (Jul 23)
- Re: Am I missing anything ? Steven Adair (Jul 23)
- Re: Am I missing anything ? bugtraq (Jul 23)
- Re: [WEB SECURITY] Am I missing anything ? kwestin (Jul 23)
- Re: Am I missing anything ? Simon Smith (Jul 23)
- Re: Am I missing anything ? Sebastian Krahmer (Jul 24)
- Re: Am I missing anything ? David Byrne (Jul 23)
- Re: Am I missing anything ? Joey Mengele (Jul 23)