WebApp Sec mailing list archives

Re: Microsoft Research Builds BrowserShield

From: Michal Zalewski <lcamtuf () dione ids pl>
Date: Wed, 6 Sep 2006 18:42:54 +0200 (CEST)

On Tue, 5 Sep 2006 bugtraq () cgisecurity net wrote:

"We basically intercept the Web page, inject our logic and transform the
page that is eventually rendered on the browser," Wang said. "We're
inserting our layer of code at run-time to make the Web page safe for
the end user."


Sure sounds saner than, say, writing a reasonably robust browser.

/mz

-------------------------------------------------------------------------
Sponsored by: Watchfire

As web applications become increasingly complex, tremendous amounts of 
sensitive data - personal, medical and financial - are exchanged, and 
stored. Consumers expect and demand security for this information. This 
whitepaper examines a few vulnerability detection methods - specifically 
comparing and contrasting manual penetration testing with automated 
scanning tools. Download "Automated Scanning or Manual Penetration 
Testing?" today!

https://www.watchfire.com/securearea/whitepapers.aspx?id=701500000008Vmm
--------------------------------------------------------------------------

Current thread:

Microsoft Research Builds BrowserShield bugtraq (Sep 06)
- Re: Microsoft Research Builds BrowserShield Michal Zalewski (Sep 06)
  - Re: Microsoft Research Builds BrowserShield Sap . (Sep 08)