Browse by Tags - The HP Security Laboratory Blog -
Sign in
|
Join
|
Help
SHOP PRODUCTS & SERVICES
EXPLORE & CREATE
CONNECT WITH OTHERS
SUPPORT & DRIVERS
COMMUNITY HOME
HP BLOGS
APP SECURITY BLOGS
APP SECURITY FORUMS
The HP Security Laboratory Blog
»
All Tags
»
Ajax
(RSS)
Browse by Tags
The HP Security Laboratory Blog
Home
Contact
Syndication
RSS for Posts
Atom
RSS for Comments
Recent Posts
Ajax Security Book is published with strong buzz and reviews
Ajax Security more than Increased Attack Surface
Ajax Security Acceptance
The real reason for (JavaScript|JSON) Hijacking
Speaking at Shmoo
Tags
Ajax
Application Security Center
breach
Cross-Site Scripting
data breach
hacked
hackers
Headers
HIPAA
HTML Injection
HTTP
Information Disclosure
Input Validation
JavaScript
Malware
Microsoft
Password Security
Personal Health Information
Privacy
Research
SQL Injection
vulnerabilities
Web Application Security
Wordpress
XSS
View more
Archives
May 2009 (5)
April 2009 (5)
March 2009 (5)
February 2009 (6)
January 2009 (7)
December 2008 (2)
November 2008 (1)
August 2008 (1)
June 2008 (1)
January 2008 (1)
December 2007 (2)
November 2007 (5)
October 2007 (1)
August 2007 (2)
July 2007 (2)
April 2007 (1)
March 2007 (1)
January 2007 (2)
December 2006 (1)
November 2006 (1)
October 2006 (2)
July 2006 (4)
June 2006 (5)
May 2006 (1)
April 2006 (2)
JavaScript
JSON
XSS
Ajax Security Book is published with strong buzz and reviews
Our Ajax Security book from Addison Wesley has been published! By now I'm sure everyone is tried of me talking about the book and its merits, so let's see what some of experts in the web security space are saying about it: Andrew van der Stock...
Published
12-20-2007 1:29 PM
by
Billy
Filed under:
Ajax
,
JavaScript
Ajax Security more than Increased Attack Surface
I got an email from Christ1an the other day asking me what Ajax Security was all about. I was just going to send him the table of contents to the book, but I thought it might be educational to see how the components of Ajax security relate, and where...
Published
11-07-2007 12:29 PM
by
Billy
Filed under:
Ajax
Ajax Security Acceptance
Its time again for AjaxWorld , the largest Ajax conference in the US. Bryan and I are thrilled. AjaxWorld offered us back -to- back sessions so we can do a 90+ minute workshop on how to break into Ajax applications. We will not only hit the major themes...
Published
08-30-2007 12:45 PM
by
Billy
Filed under:
Ajax
,
JavaScript
The real reason for (JavaScript|JSON) Hijacking
When JSON hijacking was first discussed and demonstrated in 2006 and 2007 by Whitehat, Fortify and others, all of the proof of concepts used Mozilla specific JavaScript extensions like setter or __defineSetter__ . This led many people to believe that...
Published
08-27-2007 1:59 PM
by
Billy
Filed under:
Ajax
,
JSON
Speaking at Shmoo
I’m really excited to be speaking at Shmoocon again and especially excited about my presentation this Saturday at 1pm. Javascript Malware for a Gray Goo Tomorrow focuses on the increased scope of damage caused by Cross-Site Scripting (XSS) vulnerabilities...
Published
03-22-2007 5:05 PM
by
Billy
Filed under:
Ajax
,
XSS
,
JavaScript
Ajax Webcast Questions
Please post any questions/comments/discussions you have with our Ajax (in)security webcast here and I'll do my best to answer them here. For those who haven't seen the WebCast yet, you can get there by going here: https://download.spidynamics...
Published
10-13-2006 1:30 PM
by
Billy
Filed under:
Ajax
Privacy Statement