Week's Links
(A lot of holiday) Week’s Links
X-morphic Exploitation
Skype’s Protection Is Limited
Student cracks Government’s $84m porn filter
Catching hook based keyloggers using IceSword
Core GRASP – SQL injection prevention for PHP
Interview with National Intelligence Director Mike McConnell
Feds use robots.txt files to stay invisible online. Lame.
XSS and Possible Information Disclosure in Urchin
"Cyberwar" in Estonia
Good Articles on CAPTCHAs
Why Was Skype Offline?
Using Modsec2sguil for HTTP transaction logging [...]
Week’s Links
Multi-factor Authentication for Online Banking: Security or Snake Oil?
DCT, MPack developer
The Nduja Job: Into The World Of XSS Worms
Lessons Learned From the Deployment of a Smartphone-Based Access-Control System
Measuring Privacy Loss and the Impact of Privacy Protection in Web Browsing
The TSA and the Case of the Strange Battery Charger
Google’s Black Box Lemon
Using Data Samples
The Patriot Act [...]
Week’s Links
How to restore XP activation status information after a reformat
Web Vulnerabilities in the Age of the iPhone
No ROI? No Problem
Event Logs in Unallocated Space
Ivan Voras FreeBSD 7 Live CD
Windows Vista Integrity Mechanism Technical Reference
Sguil vs. BASE
Mitigating the effects of a DDoS attack
Exploiting Online Games
Security paper shows how application can steal CPU cycles
Correspondent Inference Theory
Anti Forensics: [...]
Week’s Links
Data Backup and Recovery Options
Good Practice Guide for Computer-Based Electronic Evidence Updated
Hackers gain shell access to iPhone
Yahoo Follow-up
The Effect of Compliance on Database Integrity, Security and Administration
iPhone default passwd: Won’t people ever learn?
Top 11 reasons to look at your logs
Default Password List
Persistence of data on storage media
Two Week’s Links
Web Application Vulnerability Assessment Essentials: Your First Step to a Highly Secure Web Site
Bootable USB Security Distro on USB Key
Airport Security: Israel vs. the United States
Incident response for the mobile enterprise
Asset-Centric vs Threat-Centric Digital Situational Awareness
Protect your data: everything else is just plumbing
Identity Theft
iPhone Live Disassembly
Mass website hosting = mass defacements
Monitoring PF firewalls for [...]