[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <44DE0802.9020008@jes.ee>
Date: Sat, 12 Aug 2006 19:55:30 +0300
From: Tõnu Samuel <tonu@....ee>
To: full-disclosure@...ts.grok.org.uk
Subject: follow up to SPI Dynamics js portscanner
Hi!
I give many classes about security and one major thing about
vulnerabilities is difficulty to understand how actually dangerous they
are. People often ask "so what" about all the stuff, like this NSA XSS
right now. I found useful to develop working demo exploits to make
people think bit different.
Now again, SPI Dynamics made paper about javascript portscanning and
some people implemented nice demos like this one:
http://www.gnucitizen.org/projects/javascript-port-scanner/ And again
students ask "so what? Nice web frontend to portscanner".
So went further and made such web:
http://no.spam.ee/scanner/
For people I already shown it was common trend after that visit my pages
only with wget and curl :D
Tõnu
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists