Wednesday, June 6, 2007

SQL Injections and Cross Site Scripting.

Two of the most common and dangerous attack vectors used on websites to extract information and gain access to servers are SQL injections and Cross Site Scripting(XSS). Anyone coding web apps should be aware of these security issues.

More more info - check out

SQL INJECTIONS:
Podcast: Security Now ep 87 // you can skip the first 15 or so minutes of this.
Java Examples // how to :P

XSS:
Podcast: Security Now ep 85 // part 1 - injection and xss
Podcast: Security Now ep 86 // part 2 - xss
More java fun // how to

Labels: ,

posted by Gavan Acton at 3:56 PM 0 Comments

Tuesday, June 5, 2007

Hack Hack Hacking with Adam Laurie

I have recently been listening to podcasts dealing with security issues(ie Hacking) and I recently came across a fantastic episode of Sploitcast with the infamous Adam Laurie(guy who hacked just about every device from cell phones to the UK Passport). This guy is amazing.

http://media.libsyn.com/media/sploitcast/sploitcast_020.mp3

The episode covers everything from hacking RFID, bluetooth, infared, underground nuclear bunkers and even the politics of Hacking vs Cracking.

More Episodes can be found through http://www.sploitcast.com/
or through itunes.

Labels: ,

posted by Gavan Acton at 3:51 PM 0 Comments