February 11th, 2007
David Kellogg released one of the most amazing Firefox plugins : Plain Old Webserver (POW), which adds a server to your browser.
Yes. You can run your own webserver within the browser. Although I didn’t get past the "Hello World" application, it’s amazing that this nifty tool supports Server-side JS, GET, POST, uploads, Cookies, SQLite and AJAX.
This plugin is definitely a must have tool for any web security assessment Thanks to pdp (architect) for pointing out this tool!
February 11th, 2007
Anurag Agarwal announced a series of professional portraits of the gurus in Web Applications Security .
Quoting Anurag :
Every friday i will present a major player from the web application security field and outline his contributions to the industry.
The series of mini biographies is called Reflection and this week’s security superstar was Amit Klein. RSnake is next.
February 9th, 2007
The new buzz of the Google Webmaster Tools’ Link has spread like wildfire. However, this great tool had a serious vulnerability which permitted to gain access to the links statistics of any website. Now THAT would be a must-have fingerprinting tool ! Yes, the glitch has been fixed now 
Google Blogscoped presented the proof of concept.
February 8th, 2007
Bruce Schneier released a great essay on the Psychology of Security exploring how psychology can help explain the difference between the feeling of security and the reality of security. Quote :
We make security trade-offs, large and small, every day. We make them when we decide to lock our doors in the morning, when we choose our driving route, and when we decide whether we’re going to pay for something via check, credit card, or cash. They’re often not the only factor in a decision, but they’re a contributing factor. And most of the time, we don’t even realize, it. We make security trade-offs intuitively. Most decisions are default decisions, and there have been many popular books that explore reaction, intuition, choice, and decision.
These intuitive choices are central to life on this planet. Every living thing makes security trade-offs, mostly as a species — evolving this way instead of that way — but also as individuals. Imagine a rabbit sitting in a field, eating clover. Suddenly, he spies a fox. He’s going to make a security trade-off: should I stay or should I flee? The rabbits that are good at making these trade-offs are going to live to reproduce, while the rabbits that are bad at it are going to get eaten or starve. This means that, as a successful species on the planet, humans should be really good at making security trade-offs.
Read now The Psychology of Security
