Lexa Software: Security-Alerts@yandex-team.ru archive

		Apache-Talk @lexa.ru
		Inet-Admins @info.east.ru
		Filmscanners @halftone.co.uk
		Security-alerts @yandex-team.ru
		nginx-ru @sysoev.ru

СТАТЬИ

ПЕРСОНАЛЬНОЕ

ПРОГРАММЫ

ПИШИТЕ
ПИСЬМА

АРХИВ :: Security-alerts

Security-Alerts mailing list archive (security-alerts@yandex-team.ru)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[security-alerts] FW: [WEB SECURITY] Ajax Sniffer - Proof of concept

To: <security-alerts@xxxxxxxxxxxxxx>
Subject: [security-alerts] FW: [WEB SECURITY] Ajax Sniffer - Proof of concept
From: "Kazennov, Vladimir" <Vladimir.Kazennov@xxxxxxxxxx>
Date: Thu, 18 Jan 2007 09:59:21 +0300
Content-class: urn:content-classes:message
List-archive: <http://www.lexa.ru/security-alerts/> (Web Archive)
List-id: <security-alerts.yandex-team.ru>
List-subscribe: <mailto:majordomo@yandex-team.ru?body=subscribe%20security-alerts>
List-unsubscribe: <mailto:majordomo@yandex-team.ru?body=unsubscribe%20security-alerts>
Thread-index: Acc6UJAhmJ8QZmhXTtKSBdq6jYb/sAAfY/iQ
Thread-topic: [WEB SECURITY] Ajax Sniffer - Proof of concept

> -----Original Message-----
> From: Anurag Agarwal [mailto:anurag.agarwal@xxxxxxxxx] 
> Sent: Wednesday, January 17, 2007 1:13 PM
> To: WASC Forum
> Subject: [WEB SECURITY] Ajax Sniffer - Proof of concept
> 
> Cross Domain Ajax Sniffer - Proof of concept. Overriding the 
> original XMLHttpRequest to incorporate our sniffing function. 
>  
>
http://myappsecurity.blogspot.com/2007/01/ajax-sniffer-prrof-of-concept.
html
> 
>  
> 
> Cheers,
> 
>  
> 
> Anurag Agarwal
>

Prev by Date: [security-alerts] FYI: Attackers Using Dynamic Code Obfuscation
Next by Date: [security-alerts] Новости о спаме
Previous by thread: [security-alerts] FYI: Attackers Using Dynamic Code Obfuscation
Next by thread: [security-alerts] FW: [SA23757] Sun Java JRE GIF Image Processing Buffer Overflow Vulnerability
Index(es):
- Date
- Thread