random dross

Web security and beyond...

April, 2012

  • random dross

    Hyperlink Spoofing and the Modern Web

    • 0 Comments
    Over the past six months or so I’ve been looking at hyperlink spoofing threats as a bit of a part-time project. I’ve primarily been interested in how the design of social networking platforms impacts the ability of their users to make good...
  • random dross

    Creating XSS

    • 0 Comments
    I’ve seen MS10-002 pop up a few times in discussion recently. This is a reference to the legendary issue that David Lindsay and Eduardo Vela Nava discovered, where neutering for a given heuristic actually enabled XSS, assuming attacker control of...
Page 1 of 1 (2 items)