security.websecurity (thread)

ModSecurity 2.1.4-rc2 is now available, Ofer Shezaf
[Administrative] Server Maintenance, robert
Hackvertor becomes all powerful, gaz_sec
Inter-company scanning quandary - Part 2, an_itsec_guy
web client fuzzer.py, pdp (architect)
- Re: web client fuzzer.py, Thierry Zoller
Web Application Security Professionals Survey (Oct 2007), Jeremiah Grossman
- Re: Web Application Security Professionals Survey (Oct 2007), Jeremiah Grossman
Breach coctail party at the OWASP/WASC conference in SJ, Ofer Shezaf
Microsoft releases XSSDetect code analysis, Chris Weber (Casaba Security)
- RE: Microsoft releases XSSDetect code analysis, Eugene Siu
Technika 1.3, pdp (architect)
The Web Application Hacker's Handbook, PortSwigger
- Re: The Web Application Hacker's Handbook, Bill Pennington
Testing Strategy, لينا
- Re: Testing Strategy, Dinis Cruz
- Re: Testing Strategy, Victor Shamanovsky
  - Re: Testing Strategy, لينا
    - Re: Testing Strategy, Christian Bockermann
[TOOL] w3af - Web Application Attack and Audit Framework, Andres Riancho
Favorites Feature May Allow Phishing, robert
- RE: Favorites Feature May Allow Phishing, Hoffman, Billy
Whitepaper(SecNiche) : Paradox of Web Leeching, Aditya K Sood
- Re: Whitepaper(SecNiche) : Paradox of Web Leeching, Andre Gironda
  - Re: Whitepaper(SecNiche) : Paradox of Web Leeching, Aditya K Sood (0kn0ck)
New version of Hackvertor, gaz_sec
Latest web hacking incidents, Ofer Shezaf
CfP for OWASP Israel conference 2007, Dec 3rd 2007, Ofer Shezaf
XML script injection, gaz_sec
Renaissance, pdp (architect)
Detect NoScript POC, ascii
xkcd: Exploits of a Mom (SQL injection humor), Joe White
Some unanswered website vulnerability questions, Jeremiah Grossman
Help needed explaining SSL cipher suite strength to non-security administrators, Neil Smithline
- RE: Help needed explaining SSL cipher suite strength to non-security administrators, Martin O'Neal
- Re: Help needed explaining SSL cipher suite strength to non-security administrators, Neil Smithline
Re: Application Security Training, Zed Qyves
Website Vulnerability Disclosure Stances, robert
- Re: Website Vulnerability Disclosure Stances, jross
- Re: Website Vulnerability Disclosure Stances, Andy Steingruebl
- Re: Website Vulnerability Disclosure Stances, Chris Weber (Casaba Security)
  - Re: Website Vulnerability Disclosure Stances, dm
    - Re: Website Vulnerability Disclosure Stances, Esam Gharish
- Re: Website Vulnerability Disclosure Stances, eric
Inter-company scanning quandary, an_itsec_guy
- Re: Inter-company scanning quandary, jross
- RE: Inter-company scanning quandary, Martin O'Neal
- Re: Inter-company scanning quandary, Mike Fratto
- RE: Inter-company scanning quandary, Eric Rachner
  - RE: Inter-company scanning quandary, Schmidt, Albert E
- RE: Inter-company scanning quandary, Yeager, Joe (HP Software ASC)
  - RE: Inter-company scanning quandary, Schmidt, Albert E
- Re: Inter-company scanning quandary, Ryan Barnett
  - RE: Inter-company scanning quandary, Martin O'Neal
  - Re: Inter-company scanning quandary, Ryan Barnett
    - RE: Inter-company scanning quandary, Martin O'Neal
- RE: Inter-company scanning quandary, Schmidt, Albert E
  - RE: Inter-company scanning quandary, Schmidt, Albert E
CSRF and sending the returned content elsewhere, Jamuse
- RE: CSRF and sending the returned content elsewhere, Eric Rachner
  - RE: CSRF and sending the returned content elsewhere, Valentin Crettaz
    - RE: CSRF and sending the returned content elsewhere, eric
    - RE: CSRF and sending the returned content elsewhere, Valentin Crettaz
    - RE: CSRF and sending the returned content elsewhere, eric
- RE: CSRF and sending the returned content elsewhere, Tom Stripling
Re: metrics for testing/evaluating Web-Security-Scanners on?, Arian J. Evans
- Re: metrics for testing/evaluating Web-Security-Scanners on?, Andre Gironda
Re: scanner reviews, testing news, Andre Gironda
- Re: scanner reviews, testing news, Adam Muntner
  - Re: scanner reviews, testing news, Arian J. Evans
- Re: scanner reviews, testing news, Arian J. Evans
- Re: scanner reviews, testing news, Martin Johns
RE: Appropriate platform for testing/evaluating Web-Security-Scanners on?, zappista holland
- Re: Appropriate platform for testing/evaluating Web-Security-Scanners on?, Arian J. Evans
  - Re: Appropriate platform for testing/evaluating Web-Security-Scanners on?, Andre Gironda