Archive for the 'vulnerability' Category

Reverse Proxy Bypass – Bug in Apache mod_proxy

Wednesday, October 5th, 2011

It is possible for an attacker to reach internal resources in a DMZ if RewriteRule or ProxyPassMatch directives are used in mod_proxy config

Reverse Proxy Bypass – Bug in Apache mod_proxy

Wednesday, October 5th, 2011

It is possible for an attacker to reach internal resources in a DMZ if RewriteRule or ProxyPassMatch directives are used in mod_proxy config

Penetration Testing Policy for Amazon EC2

Thursday, August 25th, 2011

read this if you need to conduct pen and security testing on / from EC2 instances

Penetration Testing Policy for Amazon EC2

Thursday, August 25th, 2011

An Illustrated Guide to the Kaminsky DNS Vulnerability

Monday, August 11th, 2008

exellent explanation for the much-hyped Dan Kaminsky DNS vuln. This is for people for whom word “DNS” sounds like it’s in elvish