Home page logo
/

355 messages starting Jan 01 04 and ending Mar 31 04
Date index | Thread index | Author index

Thursday, 01 January

Re: Good articles on Java vs .NET security Jan Seda

Friday, 02 January

Re: [ Q ] URL obfuscation tools/scripts asen

Monday, 05 January

Re: [ Q ] URL obfuscation tools/scripts mark

Tuesday, 06 January

List Playing Up Mark Curphey

Wednesday, 07 January

DARPA / funding sources for OWASP ? Mark Curphey
Java Code Scanning Peter Lee, Kah Chen
RE: Java Code Scanning Scovetta, Michael V
RE: Java Code Scanning Mark Curphey
Re: Java Code Scanning Grega Bremec
RE: Java Code Scanning Robert Paris

Thursday, 08 January

New OWASP .NET Project and WebGoat 3.0 Beta Released Mark Curphey

Friday, 09 January

htt[rint version 200 hemil
Re: Java Code Scanning Francisco Andrades

Saturday, 10 January

Re: Java Code Scanning Gary Ellison

Monday, 12 January

Secure FTP Scott, Richard

Tuesday, 13 January

RE: Secure FTP Fletcher, Stephen J
Re: Secure FTP DaemonLabs.com Support (MLM)

Wednesday, 14 January

RE: Secure FTP Scott, Richard
java auditing tool urgoez

Thursday, 15 January

OWASP Labs oLabs and PHP Security Filters Mark Curphey
HIPAA security requirements Matt Kenigson

Friday, 16 January

Re: HIPAA security requirements ONEILL David J
Re: HIPAA security requirements lakewood1 () copper net
Web Application Penetration Testing Methodology Patent webtester
RE: Web Application Penetration Testing Methodology Patent Levenglick, Jeff
RE: Web Application Penetration Testing Methodology Patent Mark Curphey
RE: Web Application Penetration Testing Methodology Patent Matthew Wagenknecht
RE: Web Application Penetration Testing Methodology Patent Levenglick, Jeff
RE: Web Application Penetration Testing Methodology Patent Richard M. Smith
Re: Web Application Penetration Testing Methodology Patent dreamwvr () dreamwvr com
RE: Web Application Penetration Testing Methodology Patent Matthew Wagenknecht
RE: Web Application Penetration Testing Methodology Patent Levenglick, Jeff
Re: HIPAA security requirements Matt Kenigson
RE: Web Application Penetration Testing Methodology Patent Thermos, Panayiotis A. [RA]
Re: Web Application Penetration Testing Methodology Patent A.D. Douma
Re: Web Application Penetration Testing Methodology Patent cdowns
Re: HIPAA security requirements David Nester
RE: Web Application Penetration Testing Methodology Patent sullo
Re: HIPAA security requirements Clint Bodungen

Saturday, 17 January

RE: Web Application Penetration Testing Methodology Patent sullo
Re: Web Application Penetration Testing Methodology Patent A.D. Douma
Re: Web Application Penetration Testing Methodology Patent sullo
Re: Web Application Penetration Testing Methodology Patent Martin Mačok
RE: Web Application Penetration Testing Methodology Patent Pete Herzog
Re: Web Application Penetration Testing Methodology Patent A.D. Douma
Re: Web Application Penetration Testing Methodology Patent Matt Kenigson
Sanctum Patent Thread Mark Curphey

Sunday, 18 January

Re: Sanctum Patent Thread lakewood1 () copper net
Re: Sanctum Patent Thread hans
Re: Sanctum Patent Thread .Saphyr

Tuesday, 20 January

Re: Sanctum Patent Thread Jimi Thompson
RE: Web Application Penetration Testing Methodology Patent pentester2189114
RE: Sanctum Patent Thread Thor Larholm
RE: Web Application Penetration Testing Methodology Patent sullo
RE: Web Application Penetration Testing Methodology Patent pentester2189114

Wednesday, 21 January

RE: Web Application Penetration Testing Methodology Patent owasp
Sanctum Patent Summary patent.crapscan
Sanctum Patent Summary Bryan Murphy
RE: Web Application Penetration Testing Methodology Patent pentester2189114
Sanctum Thread Dead Mark Curphey

Thursday, 22 January

Re: Sanctum Thread Dead Clint Bodungen

Friday, 23 January

Secure Coding? Bah! Mark Curphey
Re: Secure Coding? Bah! Adam Tuliper
Re: Secure Coding? Bah! Chris Kirschke
Re: Secure Coding? Bah! Mark Curphey
Re: Secure Coding? Bah! David Wall @ Yozons, Inc.
RE: Secure Coding? Bah! Taco Fleur
RE: Secure Coding? Bah! Taco Fleur
Re: Secure Coding? Bah! Mark Curphey
RE: Secure Coding? Bah! Taco Fleur
RE: Secure Coding? Bah! Patrick Chavez
Re: Secure Coding? Bah! Chris DeVoney
Re: Secure Coding? Bah! Juridian
RE: Secure Coding? Bah! Taco Fleur
Re: Secure Coding? Bah! Adam Tuliper
Re: Secure Coding? Bah! Mark Curphey
Re: Secure Coding? Bah! Juridian
RE: Secure Coding? Bah! Taco Fleur
RE: Secure Coding? Bah! Taco Fleur
RE: Secure Coding? Bah! Tim Greer
Re: Secure Coding? Bah! ONEILL David J
RE: Secure Coding? Bah! Tim Greer
RE: Secure Coding? Bah! Robert Paris
RE: Secure Coding? Bah! Glenn_Everhart

Saturday, 24 January

Re: Secure Coding? Bah! Mike Hoskins
RE: Secure Coding? Bah! Tim Greer
Paros v3.1 released contact

Sunday, 25 January

RE: Secure Coding? Bah! Dinis Cruz

Monday, 26 January

Burp proxy v1.1 released PortSwigger

Wednesday, 28 January

OWASP Top Ten 2004 Update Released Jeff Williams @ Aspect
Control of cookies??? Marcelo Caffaro
Re: Control of cookies??? Erik Kangas
Re: Control of cookies??? Christian Schneemann
AppSec FAQ at OWASP Sangita Pakala
Re: Control of cookies??? m . delibero
RE: Control of cookies??? Curt Purdy
Re: SSL keys VolkanPekince
About Authorization Anil Pazvant

Thursday, 29 January

RE: SSL keys Dimitris Petropoulos
RE: AppSec FAQ at OWASP Sangita Pakala
RE: SSL keys Auri Rahimzadeh
RE: SSL keys Dimitris Petropoulos
RE: AppSec FAQ at OWASP Ulf Härnhammar
Re: AppSec FAQ at OWASP オマル イスマイル
Re: [Re: AppSec FAQ at OWASP] Sangita Pakala

Friday, 30 January

Re: [Re: AppSec FAQ at OWASP] Rohyt Belani
Re: [Re: AppSec FAQ at OWASP] Omar Ismail
Re: [Re: AppSec FAQ at OWASP] Omarjan Ismail
Encrypted URL lupin
Re: [Re: AppSec FAQ at OWASP] Philippe P.
Re: [Re: AppSec FAQ at OWASP] Philippe Prados
Re: [Re: AppSec FAQ at OWASP] Ulf Härnhammar
Re: Encrypted URL Jeff Williams @ Aspect
Re: Encrypted URL Thomas Chiverton
Re: [Re: AppSec FAQ at OWASP] Rohyt Belani
Re: Encrypted URL Adam Tuliper
Re: Encrypted URL Tim Greer
Re: Encrypted URL dreamwvr () dreamwvr com
RE: Encrypted URL Bryan Murphy
Re: AppSec FAQ at OWASP Laurian Gridinoc
Re: Encrypted URL Lars Johannesen
Re: Encrypted URL B. Johannessen
Re: SSL VolkanPekince
Re: Encrypted URL Kenneth Peiruza
Re: Encrypted URL Ulf Härnhammar
Re: Encrypted URL Fogbound Child
Re: Encrypted URL Daniel Souza

Saturday, 31 January

Re: Encrypted URL Mark Curphey
RE: Encrypted URL scott wood
Re: Encrypted URL Stephen de Vries
RE: Encrypted URL Hephaestus
Re: Encrypted URL B. Johannessen
Re: Encrypted URL David Wall @ Yozons, Inc.
Re: Encrypted URL gcb33
RE: Encrypted URL Scovetta, Michael V
Re: Encrypted URL Erik Kangas

Monday, 02 February

RE: Encrypted URL Dean Saxe
Re: Encrypted URL Kenneth Peiruza
Re: SSL Brian Hatch
RE: Encrypted URL Dean Saxe
Re: Encrypted URL Jeremiah Cornelius
Re: Encrypted URL Michael Ströder
Re: Encrypted URL Brecrost Jones
Re: Encrypted URL dreamwvr () dreamwvr com
Re: Encrypted URL Fred van Engen
Re: Encrypted URL Jeremiah Cornelius

Monday, 09 February

Oracle CSO's Response to InfoSecMagazines Secure Coding Bah! Mark Curphey

Tuesday, 10 February

Re: Oracle CSO's Response to InfoSecMagazines Secure Coding Bah! Maty SIMAN

Wednesday, 11 February

Re: Oracle CSO's Response to InfoSecMagazines Secure Coding Bah! [Virus checkedAU] Bruce . Morris

Friday, 13 February

Session ID Abuse Johnny GoLightly
session id abuse Johnny GoLightly

Sunday, 15 February

Single terminal login stevenr
Re: session id abuse npguy
Re: session id abuse hans
Re: Single terminal login Martin Tsachev
Re: Session ID Abuse Paul
Re: Session ID Abuse lists AT dawes DOT za DOT net
RE: Session ID Abuse Kris Wilkinson
Re: Session ID Abuse Steve Shah

Monday, 16 February

Re: Single terminal login Matt Wirges
Innocent Code Prize for Best Post on WebAppSec Mark Curphey

Tuesday, 17 February

Re: Single terminal login urbn
RE: Single terminal login stevenr
RE: Single terminal login Michael Silk
Re: Single terminal login lists AT dawes DOT za DOT net
RE: Single terminal login stevenr
RE: Single terminal login Michael Silk

Wednesday, 18 February

Canonicalization tom.rogers
Re: Single terminal login Ingo Struck
Interesting New Industry Group Mark Curphey

Thursday, 19 February

tips to secure a web application ermelir
Re: tips to secure a web application ermelir
RE: tips to secure a web application Leung, Annie LDB:EX
RE: tips to secure a web application Lars Troen

Friday, 20 February

Re: tips to secure a web application .Saphyr
Re: tips to secure a web application .Saphyr
Re: tips to secure a web application Martin Tsachev
RE: tips to secure a web application Andy Gordon
Removing Apache Banner on IBM Websphere HTTP Server (Apache) for Windows Jason binger
Re: Removing Apache Banner on IBM Websphere HTTP Server (Apache) for Windows Steffen Furholm / CABO Communications A/S
Re: Removing Apache Banner on IBM Websphere HTTP Server (Apache) for Windows Ivan Ristic
Re: Removing Apache Banner on IBM Websphere HTTP Server (Apache) for Windows Daniel Cid
Re: Removing Apache Banner on IBM Websphere HTTP Server (Apache) for Windows Thomas Chiverton
RE: Removing Apache Banner on IBM Websphere HTTP Server (Apache) for Windows Thiago Lima
RE: [Securityfocus-webapp] RE: Removing Apache Banner on IBM WebsphereHTTP Server (Apache) for Windows Remko Lodder

Saturday, 21 February

Fwd: Re: [SC-L] On "application security" Mark Curphey

Sunday, 22 February

Re: tips to secure a web application .Saphyr

Tuesday, 24 February

Security tool for monitoring HTTP headers? patrick
RE: Security tool for monitoring HTTP headers? Skander Ben Mansour
RE: Security tool for monitoring HTTP headers? WebAppSecurity [Technicalinfo.net]
RE: Security tool for monitoring HTTP headers? Mark Curphey
RE: Security tool for monitoring HTTP headers? Glyn
Re: Security tool for monitoring HTTP headers? Grega Bremec
RE: Security tool for monitoring HTTP headers? Toni Heinonen
Controlling access to pdf/doc files Sangita Pakala
Re: Security tool for monitoring HTTP headers? lists AT dawes DOT za DOT net
Re: Security tool for monitoring HTTP headers? Keith W. McCammon
Re: Security tool for monitoring HTTP headers? Ivan Ristic
Re: Security tool for monitoring HTTP headers? znndrp

Wednesday, 25 February

Re: Controlling access to pdf/doc files Blasted
RE: Security tool for monitoring HTTP headers? Internet User
Re: Security tool for monitoring HTTP headers? Shade
Security tool for monitoring HTTPS traffic? Andreas Fredrich
Re: Security tool for monitoring HTTP headers? Martin Tsachev
RE: Security tool for monitoring HTTP headers Brecrost Jones
RE: Security tool for monitoring HTTP headers? Booth, Simon
RE: Security tool for monitoring HTTP headers? sunzi
Re: Controlling access to pdf/doc files Jed Holler
RE: Controlling access to pdf/doc files Scovetta, Michael V
RE: Controlling access to pdf/doc files GRIFFITHS ian

Thursday, 26 February

Model for Field level Access Control Sundaram, Ramasubramanian (Cognizant)
code analysis for c#? Mads Rasmussen
Re: Controlling access to pdf/doc files Suresh Prabhu
RE: Security tool for monitoring HTTPS traffic? WebAppSecurity [Technicalinfo.net]
Re: Controlling access to pdf/doc files Mark Curphey
Re: Security tool for monitoring HTTPS traffic? Ivan Ristic
RE: Controlling access to pdf/doc files Zuech, Richard
Re: Controlling access to pdf/doc files chasd
Blocking/Screening any HTTP, HTTPS, FTP stream from intern to extern? Andreas Fredrich
RE: Security tool for monitoring HTTPS traffic? John Reilly
Re: Security tool for monitoring HTTPS traffic? Mike
RE: Controlling access to pdf/doc files Alistair Meikle
RE: Controlling access to pdf/doc files Mark Mcdonald
RE: Controlling access to pdf/doc files Harper.Matthew
Re: Controlling access to pdf/doc files lists AT dawes DOT za DOT net
RE: code analysis for c#? Arjun Pednekar
Re: code analysis for c#? Larry Guger
RE: Model for Field level Access Control Paul John Summers
RE: Security tool for monitoring HTTPS traffic? Altheide, Cory B. (IARC)
RE: Controlling access to pdf/doc files Noah Gray
RE: code analysis for c#? patrick
Re: Security tool for monitoring HTTPS traffic? Thomas Chiverton
RE: Controlling access to pdf/doc files Paulus Widodo
RE: Security tool for monitoring HTTPS traffic? John Reilly
RE: Security tool for monitoring HTTPS traffic? Satish Chandra Prasad
Re: Security tool for monitoring HTTPS traffic? lists AT dawes DOT za DOT net
Re: Security tool for monitoring HTTPS traffic? dd
RE: Security tool for monitoring HTTPS traffic? John Floyd
Re: Security tool for monitoring HTTPS traffic? Imre Kertesz
Re: Model for Field level Access Control Cesar Osorio

Friday, 27 February

RE: Security tool for monitoring HTTPS traffic? Glyn
New OWASP Article, Project Update and Summer Conference ! Mark Curphey
RE: Model for Field level Access Control Lanham, M. MAJ EECS

Saturday, 28 February

Re: Security tool for monitoring HTTPS traffic? lists AT dawes DOT za DOT net
RE: Security tool for monitoring HTTPS traffic? najeeb . hatami
Re: Controlling access to pdf/doc files siput
OT: websphere webservice configuration Mads Rasmussen
Re: code analysis for c#? Mads Rasmussen
RE: Controlling access to pdf/doc files Sangita Pakala
RE: code analysis for c#? Cassidy, Thomas
Re: Controlling access to pdf/doc files David Cameron
Re: Security tool for monitoring HTTPS traffic? Gary Flynn
Where do You Architect Security in An Application (Was HTTPS Security Moniting Tools) Mark Curphey
RE: websphere webservice configuration patrick
Re: Controlling access to pdf/doc files (db "better" than filesystem?) David Wall @ Yozons, Inc.
Re: Controlling access to pdf/doc files (db "better" than filesystem?) Ido Rosen

Sunday, 29 February

RE: Controlling access to pdf/doc files (db "better" than filesys tem?) GRIFFITHS ian
RE: Controlling access to pdf/doc files (db "better" than filesystem?) Jannie Hanekom
Re: Where do You Architect Security in An Application (Was HTTPS Security Moniting Tools) marko

Tuesday, 02 March

Re: Controlling access to pdf/doc files (db "better" than filesystem?) David Cameron
Re: Innocent Code Prize for Best Post on WebAppSec Sverre H. Huseby
Re: Where do You Architect Security in An Application (Was HTTPS Security Moniting Tools) Jeff Williams

Thursday, 04 March

Announcing The Black Hat Briefings call for papers Jeff Moss

Friday, 05 March

A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein
Re: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Jeremiah Grossman

Saturday, 06 March

Re: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Peter Watkins

Sunday, 07 March

RE: Security tool for monitoring HTTPS traffic? Amichai Shulman
RE: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Amit Klein
RE: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein

Monday, 08 March

How do you measure software security issues in web applications ? Mark Curphey

Wednesday, 10 March

RE: Security tool for monitoring HTTPS traffic? Yoram Zahavi
Re: Security tool for monitoring HTTPS traffic? Romain Vergniol

Thursday, 11 March

RE: Security tool for monitoring HTTPS traffic? David Wong
Tomcat on port 80 or Java as root Rajkumar S

Friday, 12 March

RE: Tomcat on port 80 or Java as root Harshul Nayak
Re: Tomcat on port 80 or Java as root Daniel
RE: Tomcat on port 80 or Java as root Marc Deglos

Saturday, 13 March

Re: Tomcat on port 80 or Java as root Rajkumar S
Re: Tomcat on port 80 or Java as root Dave Ockwell-Jenner
Re: Tomcat on port 80 or Java as root Rajkumar S
Re: Tomcat on port 80 or Java as root Aleksi Kallio
Re: Tomcat on port 80 or Java as root David Wall @ Yozons, Inc.
RE: Tomcat on port 80 or Java as root Martin Gil
Re: Tomcat on port 80 or Java as root George Georgalis
Re: Tomcat on port 80 or Java as root d31ik47
Re: Tomcat on port 80 or Java as root Daniel
RE: Tomcat on port 80 or Java as root urgoez
Re: Tomcat on port 80 or Java as root Daniel
Re: Innocent Code Prize for Best Post on WebAppSec Sverre H. Huseby

Sunday, 14 March

Re: Tomcat on port 80 or Java as root Grega Bremec
MS SQL Inter-database query question Michael Silk

Monday, 15 March

Re: MS SQL Inter-database query question Adam Tuliper
Re: MS SQL Inter-database query question Marlon Jabbur
RE: MS SQL Inter-database query question Michael Howard
RE: MS SQL Inter-database query question Harshul Nayak
Stealing Passwords via browser refresh Karmendra Kohli

Tuesday, 16 March

xxs problem Frank Dobb
RE: xxs problem Dean Saxe
xxs problem - character problems Frank Dobb

Wednesday, 17 March

Re: xxs problem Clint Bodungen
RE: xxs problem Michael Silk

Thursday, 18 March

Security using Apache module stevenr

Friday, 19 March

RE: Security using Apache module stevenr
Re: Security using Apache module chorn
Re: Security using Apache module Ivan Ristic
WebScarab updated Rogan Dawes
Re: Security using Apache module Ivan Ristic
RE: Security using Apache module Calderon, Juan Carlos (GE Commercial Finance, NonGE)
testing web app security Michael Cunningham
Re: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Charlie Cano
Re: testing web app security A.D. Douma
Re: testing web app security Felipe Moniz de Aragao
RE: testing web app security Mark Curphey
OASIS WAS Classification Scheme Mark Curphey
OWASP Web Application Pen Testing Check List Mark Curphey

Saturday, 20 March

Re: testing web app security Steve Suehring
RE: OASIS WAS Classification Scheme Larry Guger
Re: testing web app security Ivan Ristic

Monday, 22 March

secure software engineering methodology Mads Rasmussen
XSS and hijacking vuln at phpgroupware Hokkaido

Tuesday, 23 March

Burp spider v1.0 released PortSwigger
Penetration Testing Report - Sample Report Ofer Maor
Re: secure software engineering methodology Alex Russell
Re: secure software engineering methodology Gunnar Peterson
Re: secure software engineering methodology Mads Rasmussen
Paros v3.1.1 released contact
SSL version selection query Abhishek Kumar
RE: SSL version selection query Bénoni MARTIN

Wednesday, 24 March

VB: [VulnWatch] Remotely Exploitable Cross-Site Scripting in Hotmail and Yahoo (GM#005-MC) Ulf Härnhammar

Thursday, 25 March

Re: Innocent Code Prize for Best Post on WebAppSec Sverre H. Huseby
RE: A new Sanctum white paper: "Divide and Conquer - HTTP Respons e Splitting, Web Cache Poisoning Attacks, and Related Topics" Weiler, Jim
RE: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein

Friday, 26 March

Stack overflow blocking in commercial packages Glenn_Everhart

Sunday, 28 March

Re: Stack overflow blocking in commercial packages exon
Authenticating a web server Amit Sharma
RE: Authenticating a web server Imperva Application Defense Center
Re: Authenticating a web server Steve Suehring

Monday, 29 March

OASIS WAS Thesaurus (coming soon) Mark Curphey
RE: OWASP Web Application Pen Testing Check List Gaydosh, Adam

Tuesday, 30 March

RE: Stack overflow blocking in commercial packages Glenn_Everhart
White Paper - Web Application Worms: Myth or Reality? Imperva Application Defense Center

Wednesday, 31 March

Re: White Paper - Web Application Worms: Myth or Reality? Daniel
RE: White Paper - Web Application Worms: Myth or Reality? stephen
RE: White Paper - Web Application Worms: Myth or Reality? Amichai Shulman
RE: White Paper - Web Application Worms: Myth or Reality? Amichai Shulman
improvements in session management? flatline
RE: testing web app security Weiler, Jim
RE: improvements in session management? WebAppSecurity [Technicalinfo.net]
Re: improvements in session management? Mark Foster
Administrivia Mark Curphey
Evading Client-Certificate Authentication Kevin Vanhaelen
Re: improvements in session management? Mark Foster
Re: Evading Client-Certificate Authentication Skip Carter
RE: improvements in session management? WebAppSecurity [Technicalinfo.net]
Further Thoughts about Benchmarking Mark Curphey
Previous period Next period
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault