Hacking the Intranet with JavaScript Anti-DNS Pinning

I came across an ingenious way of breaking the same-origin policy by undermining dns-pinning : http://shampoo.antville.org/stories/1451301/ Voila, the intranet is wide open ! Good work.

Thank you for reading this post. You can now Read Comment (1) or Leave A Trackback.  Print This Post

Post Info

This entry was posted on Thursday, January 18th, 2007 .

Tagged with: Articles, Web Applications

You can follow any responses to this entry through the Comments Feed. You can Leave A Comment, or A Trackback.

Previous Post: Web Application Firewall for HTTP/HTTPS »
Next Post: OWASP Testing Guide V2 »

Read More

Related Reading:

• Top 10 Web Hacks of 2006
• Googlehacks and Anti-Googlehacks
• Now You Can Do Anti-Virus Audit with Nessus
• Security Hacks Bluetooth Hacking Tools
• PhishTank AND Anti-Phishing Working Group join forces

• Back to the Homepage

Latest Posts:

• Animated Presentation on Sony PSN Hack
• ArcSight Tip #1 – arcsight managersetup notification test
• I’m a CISSP
• Operation:Payback or Social Vendetta is Here
• I got owned by Malware Destructor 2011 Virus
• New Downtime Cost Calculator by Storagepipe.com. What if ?
• Securing Your Network from Web Threats
• My Twitter Notes on 2010-07-25
• New NetWitness Visualize : Welcome To The Future!
• My Twitter Notes on 2010-07-18

One Response to “Hacking the Intranet with JavaScript Anti-DNS Pinning”

• 1
  群发软件
  August 20th, 2007 08:44

  群发软件

  群发软件

Leave a Reply

Dragos Lungu Dot Com

Security Tools and Tips

• Subscribe
• HOME
• About
• My Services
My Reviews