Re: [OWASP-Delhi] DOM-based XSS risk rating

Try netsparker https://www.netsparker.com/web-vulnerability-scanner/ On Thu, Aug 7, 2014 at 8:58 AM, Vishal A. wrote: > Also came across this post recently: > > https://www.acunetix.com/websitesecurity/improving-dom-xss-vulnerabilities-detection/ > > On Wed, Aug 6, 2014 at 7:47 PM, Padma Anand

[Owasp-delhi] Skype IM (MAC OS X) - Is this the 0day ?

http://secniche.blogspot.com/2011/05/skype-im-mac-os-x-is-this-0day.html Thanks Rohit Bansal ___ Owasp-delhi mailing list Owasp-delhi@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-delhi

[Owasp-delhi] NoScript (2.0.5.1 < less ) - Bypass "Reflective XSS" through Union SQL Poisoning Trick (SQLXSSI)

be.com/watch?v=r-kgKNspqjQ Disclosure: The bug was disclosed to the author on 24th November 2010. A new version of NoScript 2.0.6 is released today (25th November 2010). Further, NoScript 2.0.6 version fails to combat against this attack vector and can be bypassed with the same. Thanks &

[Owasp-delhi] Microsoft Network Transfer Module Over HTTPS SQL Injection

exploit the inherent functionality of FTM. Primarily, it can be fuzzed more intensively by generating false metadata combination which can be passed as an input to FTM. More Info : http://www.secniche.org/advisory/ms/micr_sql_inj.html Thanks & Regards Rohit Bansal http://in.linkedin.co

[Owasp-delhi] Notorious Datacenter Support Systems - Pwning through Outer Sphere HITB

disclosure reasons. Our Paper : http://magazine.hitb.org/issues/HITB-Ezine-Issue-004.pdf <http://magazine.hitb.org/issues/HITB-Ezine-Issue-004.pdf> Thanks & Regards Rohit Bansal http://in.linkedin.com/in/rb1337 <http://magazine.hitb.org/issues/HITB-Ezine-

[Owasp-delhi] Phoenix Exploit Kit (2.4) - Infection Analysis (OUT)

hoenix-exploit-kit-24-analysis.html Thanks & Regards Rohit Bansal <http://in.linkedin.com/in/rb1337> http://in.linkedin.com/in/rb1337 ___ Owasp-delhi mailing list Owasp-delhi@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-delhi

[Owasp-delhi] Reverse Honey Trap - Striking Deep inside Online Web Antivirus Engines and Analyzers

-Beating-Online-Anti-virus-Engine-in-its-Own-Game.html Thanks & Regards Rohit Bansal http://in.linkedin.com/in/rb1337 ___ Owasp-delhi mailing list Owasp-delhi@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-delhi

[Owasp-delhi] SpyEye 1.2.22 - Art of Web Fakes - Malware

/ Thanks & Regards Rohit Bansal ___ Owasp-delhi mailing list Owasp-delhi@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-delhi

Re: [Owasp-delhi] Owasp-delhi Digest, Vol 36, Issue 7

here u can find something interesting https://ccrma.stanford.edu/courses/422/projects/WaveFormat/ /r0h1t On Fri, Jul 30, 2010 at 9:30 PM, wrote: > Send Owasp-delhi mailing list submissions to >owasp-delhi@lists.owasp.org > > To subscribe or unsubscribe via the World Wide Web, visit >