[ad] It’s been a while since I’ve seen a tool of this type, back in the heydays of Google Hacking (which became the generic term for information gathering via search engines) there were multiple tools such as Gooscan and Goolag. Binging is a simple tool to query Bing search engine. It will use your Bing […]
web-applications
Microsoft Opens the Gates to Hack Their Web Services
[ad] It seems like Microsoft are starting to get serious about security, in a very progressive move they have said they are ok with ethical hackers finding security flaws in their online services. It’s been fairly ok so far to hack away at software installed on your own hardware, but hitting remotely hosted applications has […]
SIFT Web Method Search Tool
[ad] SIFT has just published a world-first tool for identifying rogue web methods. The Web Method Search tool is a Windows based application that uses a hybrid dictionary attack in an attempt to find unpublished administrative and other web services functions. As web services are becoming more prevalent, poor security practices from previous generations of […]
Academic Papers on Web Application Security
[ad] I found a useful resource containing a whole list of academic papers on web-application security. This list represents an attempt to collect academic papers on the subject of Web application security sorted by the year of publication. Hacking web applications has become a big thing in the last 5 years, just look at the […]
Security Researchers Afraid to Reveal Vulnerabilities
[ad] Well it happened a while back, remember? The French researcher Guillaume Tena who got in trouble for breaching French copywrite laws by decompiling some software. Now people are generally starting to worry about disclosing vulnerabilities through any channels, does there need to be some kind of anonymous PGP key based system for vulnerability disclosure? […]