WebApp Sec mailing list archives
Auditing mailing scripts for web app pentesters
From: Adrian Pastor <adrian.pastor () procheckup com>
Date: Tue, 15 Jul 2008 15:05:46 +0100
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi guys, We just released a paper aimed at web application pentesters. The paper ~ discusses auditing scripts for vulnerabilities that would allow using the target organization's mail servers for spamming/phishing purposes. The content of the paper is derived from real pentest experiences on live e-commerce environments. I hope you find it useful and can apply its content to your security testing assessments: http://www.procheckup.com/CRLFi.pdf - -- Adrian P. | Senior IT Security Consultant | ProCheckUp Ltd -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIfK66UmN3xwbmU6YRAnl8AKCoF0hK0lfwzF4IYYxw4hiSJe2BdgCgufwU pm0UFf5PWWXE91J4vJhvBqg= =DJWW -----END PGP SIGNATURE----- -------------------------------------------------------------------------Sponsored by: Watchfire Methodologies & Tools for Web Application Security Assessment With the rapid rise in the number and types of security threats, web application security assessments should be considered a crucial phase in the development of any web application. What methodology should be followed? What tools can accelerate the assessment process? Download this Whitepaper today!
https://www.watchfire.com/securearea/whitepapers.aspx?id=70170000000940F -------------------------------------------------------------------------
Current thread:
- Auditing mailing scripts for web app pentesters Adrian Pastor (Jul 15)
- RE: Auditing mailing scripts for web app pentesters Brett Moore (Jul 16)
- Re: Auditing mailing scripts for web app pentesters Adrian Pastor (Jul 16)
- RE: Auditing mailing scripts for web app pentesters Brett Moore (Jul 16)