Full Disclosure mailing list archives
PenTest Extra 01/2012 Released
From: Krzysztof Marczyk <krzysztof.marczyk () software com pl>
Date: Tue, 17 Jan 2012 11:11:05 +0100
Hello, First issue of PenTest Extra in 2012 is released. This issue covers following articles: * XSS & CSRF: Practical exploitation of post-authentication vulnerabilities in web applications by Marsel Nizamutdinov * Discovering Modern CSRF Patch Failures by Tyler Borland * Business Logic Vulnerabilities via CSRF by Eugene Dokukin * XSS Using Shell of the future by Sow Ching Shiong * Cross-Site Request Forgery by Jamie * Security Resolutions for 2012 by Rishi Narang * Interview with Peter N. M. Hansteen by PenTest Team Check http://pentestmag.com/pentest-extra-012012/ for articles. PDF version can be download from:- http://pentestmag.com/pentest-extra-012012/ Send us your feedback, articles at en () pentestmag com Regards, Krzysztof Marczyk PenTest Extra Magazine Editor Software Media Sp z o.o. -- Krzysztof Marczyk PenTest Extra Magazine Editor Software Media Sp z o.o. www.pentestmag.com
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- PenTest Extra 01/2012 Released Krzysztof Marczyk (Jan 17)