Ckers - ckers.org - ha.ckers.org web application security lab
General Information:
Latest News:
And Beyond… 2 Dec 2010 | 10:27 am
Here we are, my friends. The 1000th post. Whew! It’s quite a load off to have finally made it. Hopefully this doesn’t come as a surprise to anyone since I’ve been announcing it for months, and if you ...
FAQ 2 Dec 2010 | 10:27 am
One post left… I know people have a few questions about the remaining fate of the site, so I decided to write a little FAQ prior to my last post: Q: Are you planning on keeping ha.ckers.org up for r...
What’s Left? 2 Dec 2010 | 10:26 am
2 posts left… As I wind down, I’ve gotten a lot of requests to talk about various things in my final posts. Everything from talking about what to study for newbies, how to keep up on WebAppSec when I...
Mod_Security and Slowloris 2 Dec 2010 | 10:26 am
3 posts left After all the press around Wong Onn Chee and Tom Brennan’s version of a HTTP DoS attack, I think people started taking HTTP DoS a tad more seriously. Yes, there are lots of variants of H...
Minimalistic UI Decisions in Browsers 1 Dec 2010 | 10:25 am
4 posts left… I’ve tried to talk about this a few times to people over the last year or so, but I think it’s hard to explain without pictures. So I gathered a bunch of screen shots that should help e...
Cheating Part 2 22 Nov 2010 | 10:24 am
5 posts left… So my Wife decided that she loves to play that game “Words with Friends” on the iPhone. It’s basically just like Scrabble but probably for legal reasons it’s just slightly different (bo...
Cheating Part 1 22 Nov 2010 | 10:24 am
6 posts left… I just thought I’d write a few vaguely amusing posts having just come back from Abu Dhabi (Blackhat) and Brazil (OWASP). A few weeks back my Wife was having a rather fancy soiree work p...
FireSheep 16 Nov 2010 | 10:23 am
7 posts left… I go back and forth on whether I think FireSheep is interesting or not. Clearly, it’s old technology re-hashed. But it is interesting not because it works, but that it surprises people ...
Detecting Malice With ModSecurity 29 Oct 2010 | 09:22 am
8 posts remaining Ryan Barnett has a new series he’s doing called Detecting Malice with ModSecurity that I wanted to spend a minute talking about. Firstly, it’s personally interesting, because he’s u...
Performance Primitives 21 Oct 2010 | 09:36 am
11 more posts left… While I was out at Bluehat I ended up having some good meetings between Intel, Mozilla and Adobe. How are these companies related, you may ask? Well all of them care about perform...