Monthly Archives: September 2004

Hack It!

Foundstone has released a sample web application written in ASP.NET / C# that simulates the most common vulnerabilities in todays HTTP based applications (cross site scripting, sql injection…). You can instantly start hacking – or read the detailed how-to pdf … Continue reading

Posted in Uncategorized | Leave a comment

New netstat options in XP SP2

Prior to Windows 2000 there was no built-in possibility to figure out which program on your system opened which port. You could use ‘netstat -an’ to list all open ports, but not which process or library has opened the ports. TcpView … Continue reading

Posted in Uncategorized | Leave a comment

Security Advisory : XSS Vulnerability in Newtelligence DasBlog

ERNW Security Advisory Cross-Site Scripting Vulnerability in Newtelligence DasBlog Author:Dominick Baier <dbaier@ernw.de> 1. Summary:A XSS (Cross-Site-Scripting) Vulnerability in DasBlog’s Event and Activity Viewer allows to inject and execute code on the client’s machine. This allows an attacker to transfer the … Continue reading

Posted in Uncategorized | Leave a comment