Application Security This Week for December 23

SplashData has their 100 worst passwords out again this year.  Remember, at least, prevent these passwords in your signin flow.


Really good breakdown of finding hidden files and directories and using them for information gathering on web applications.


Microsoft has come out with Windows Sandbox - might be a good platform for analyzing malware, but the jury is still out.


Gah, bug in Ghostscript.  Lots of vectors in the ImageMagik/PostScript space these days, watch yourselves.


And this is why I write up folks that have third party hosted JavaScript.


That's the news folks.  Stay safe, and have a good holiday.

Comments are closed