Hacking the Intranet with JavaScript Anti-DNS Pinning
I came across an ingenious way of breaking the same-origin policy by undermining dns-pinning : http://shampoo.antville.org/stories/1451301/ Voila, the intranet is wide open ! Good work.
If you enjoyed this post, make sure you subscribe to my RSS feed!
Thank you for reading this post. You can now Read Comment (1) or Leave A Trackback.
Post Info
This entry was posted on Thursday, January 18th, 2007 and is filed under Web Applications, Articles.You can follow any responses to this entry through the Comments Feed. You can Leave A Comment, or A Trackback.
Previous Post: Web Application Firewall for HTTP/HTTPS »
Next Post: OWASP Testing Guide V2 »
Read More
Related Reading:
Latest Posts:
- Gemalto - Security To Be Free
- Free alternative to ArcSight ESM ? Hardly..
- Privacy Dilemma: How to Protect Yourself Online
- Solera Networks Deep-Packet Capture Review
- WordPress Exploit Scanner
- Phishing Exposed, Brands Secured
- Scanners: New Nessus Release; New eEye Web Scanner
- Good News from ArcSight and Imperva
- CCTV Security Camera and Surveillance Equipment
- OpenDNS Offers Free Web Content Filtering
August 20th, 2007 08:44
群发软件
群发软件