Urgent - Web Applications Auditing

From: MiH4k3 (mih4ke@gmail.com)
Date: Thu Feb 21 2008 - 11:48:52 EST

• Next message: Brendan Dolan-Gavitt: "Extract credentials directly from registry hives [tool release]"
• Previous message: Brett Moore: "RE: Malicious file upload in .JPG or GIF format"
• Next in thread: bugtraq@cgisecurity.net: "Re: Urgent - Web Applications Auditing"
• Reply: bugtraq@cgisecurity.net: "Re: Urgent - Web Applications Auditing"
• Reply: kevin horvath: "Re: Urgent - Web Applications Auditing"
• Maybe reply: Yousif@vapt-sec.com: "Re: Urgent - Web Applications Auditing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Everybody,

I will performed an audit for web applications (XSS on GET/POST
method, Path transversal, etc...). Do you have some documents on how
perform it correctly, methodology, examples of reporting, etc. ?

Thanks a lot in advance for your help,

mih4ke

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

• Next message: Brendan Dolan-Gavitt: "Extract credentials directly from registry hives [tool release]"
• Previous message: Brett Moore: "RE: Malicious file upload in .JPG or GIF format"
• Next in thread: bugtraq@cgisecurity.net: "Re: Urgent - Web Applications Auditing"
• Reply: bugtraq@cgisecurity.net: "Re: Urgent - Web Applications Auditing"
• Reply: kevin horvath: "Re: Urgent - Web Applications Auditing"
• Maybe reply: Yousif@vapt-sec.com: "Re: Urgent - Web Applications Auditing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:58:25 EDT