lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 23 Jul 2007 13:37:31 -0400
From: "J. Patterson Wicks" <pwicks@...gen.com>
To: Deeþàn Chakravarthÿ <codeshepherd@...il.com>,
	<websecurity@...appsec.org>, <full-disclosure@...ts.grok.org.uk>
Subject: Re: Am I missing anything ?

Canonicalization
Input Validation
Buffer Overflows (Stack Buffer Overflows - Heap/BSS/Data Overflows)



-----Original Message-----
From: full-disclosure-bounces@...ts.grok.org.uk [mailto:full-disclosure-bounces@...ts.grok.org.uk] On Behalf Of Deeþàn Chakravarthÿ
Sent: Monday, July 23, 2007 1:20 PM
To: websecurity@...appsec.org; full-disclosure@...ts.grok.org.uk
Subject: [Full-disclosure] Am I missing anything ?

Hi All,
   Just wondered if I am missing anything important. Am planning to give 
talk on web security.
Is there any other technique other than the following I have to speak 
about ?

1)XSS
2)CSRF
3)SQL Injection
4)AJAX/JSON hijacking
5)HTTP response splitting
6)RFI
7)CRLF
8)MITM

Thanks
Deepan

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists