Skipfich is another web mapping vulnerability scanner, along the lines of my preferred Nikto. ...
Read More
As I mentioned in my intro post, I have started with the vulnerability-analysis modules and just wen...
Read More
It's true, ftp isn't something that you think of first when conducting an assessment We look at web...
Read More
Some of you know that I am the curator of the Information Security desk at Wikistrat, a virtual stra...
Read More
There are a few vulnerabilities that are so complex that it is best to use a special tool to test fo...
Read More
I have a confession: nikto is one of my favorite tools. It is a web server scanner that checks for n...
Read More
The Pentesters Framework is a set of tools designed to make testing of web applications easier....
Read More
I just finished giving my new talk on the care and feeding of your developers in a security culture...
Read More
So a year ago, while debugging a SQL statement in an identity system, I jotted a stupid joke into Tw...
Read More
This has been quite a year of community. I have been honored to present at a load of user grou...
Read More
Yesterday, Troy Hunt posted a very well written article showing how account enumeration can cause in...
Read More
I'm so proud to announce that you can now find my application security training on Wintellect Now!My...
Read More