Soroush Dalili – Computer Security Is My Interest!

Soroush Dalili's blog – بلاگ سروش دلیلی
icon
  • Home
  • About Me
  • Advisories
  • Contact Me
  • FAQs
  • Links
  • Projects
    • Cross Site Request Forgery (CSRF) PoC Template (by Javascript)
    • Excel Advanced Search Add-In Application

Drag and Drop XSS in Firefox by HTML5 (Cross Domain in frames)

On December 31, 2011, in My Advisories, Security Articles, by Soroush Dalili
6 Comments
Leave A Response

Tagged with: drag and drop XSS • Drag Drop HTML5 XSS • Firefox Javascript Protocol Bypass • XSS by Feed Protocol 

Unrestricted File Download V1.0 – Windows Server

On January 23, 2011, in Security Articles, by Soroush Dalili
1 Comments
Leave A Response

Tagged with: Unrestricted File Download • Unrestricted File Upload 

A Dotty Salty Directory: A Secret Place in NTFS for Secret Files!

On December 17, 2010, in Security Articles, by Soroush Dalili
1 Comments
Leave A Response

Tagged with: $Data • $Index_Allocation • ADS • Alternate Data Stream • Directory by Dot • File By Dot • Hidden Folders in NTFS • Hide files in NTFS • NTFS 

Cross Site URL Hijacking by using Error Object in Mozilla Firefox

On May 27, 2010, in My Advisories, Security Articles, Security Posts, by Soroush Dalili
3 Comments
Leave A Response

Tagged with: Cross Site URL Hijacking • Cross Site URL Hijacking by Error Object • XSUH by error object • XSUH in Mozilla Firefox 

New Method: Role of the “/” character in mapping the website directories! – Webservers fault?

On May 6, 2010, in Security Articles, Security Posts, by Soroush Dalili
0 Comments
Leave A Response

Tagged with: Mapping directory • Mapping folder • Slash role • using slash as a signature 
Previous Entries

Categories 

  • My Advisories (8)
  • Normal Posts (22)
  • Security Articles (17)
  • Security Posts (31)
 

Recent Posts 

  • Drag and Drop XSS in Firefox by HTML5 (Cross Domain in frames)
  • “Advisories” has been updated
  • Flash ExternalInterface.call() JavaScript Injection – can make the websites vulnerable to XSS
  • Travian Game Patch – Finally!
  • Unrestricted File Download V1.0 – Windows Server
 

Tags 

All Facebook Application Walls block ip block isp Blog Template by using iMacros close advertisment computer science vulnerabilities credit card algorithm credit card algorithm is equal to IMEI algorithm Critical vulnerabilities CSRF Attacks educational bug finding Facebook Add Friend Facebook Automatic Friend Add Facebook Automation Friend Facebook Game Cheat FaceBook MobWars Cheat final project article free web hosting ftp vulnerabilities hacking videos IMEI algorithm javascript to close advertisements java vulnerabilities logical flaw Microsoft IIS Vulnerability National ID Code Algorithm National ID Code JavaScript Phishing attacks Privacy soroush dalili sql injection tutorial travian game travian hack travian online game university of birmingham vulnerabilities Web application security in ASP Web application security in ASP - (simple) JSP Web application security in JSP weblogs website vulnerability XSS XSS Vulnerability الگوریتم کد ملی کد ملی
 

RSS OWASP Feeds 

  • Delivering Unhappiness January 16, 2012
  • Security and Development: Building A Better Relationship January 16, 2012
  • New Entry at No 4: Cyber Attacks January 14, 2012
  • Bilateral Authentication January 13, 2012
  • Google shares Chrome browser security principles January 13, 2012
 

RSS Symantec Security News 

 

RSS New Vulnerabilities 

  • Vuln: Pligg CMS 'status' Parameter SQL Injection Vulnerability December 29, 2012
  • Vuln: Linux Kernel Unix Socket Backlog Local Denial of Service Vulnerability January 17, 2012
  • Vuln: Linux Kernel 'hfs_mac2asc()' Local Privilege Escalation Vulnerability January 17, 2012
  • Vuln: Multiple Cogent Datahub Products Unspecified HTTP Header Injection Vulnerability January 16, 2012
  • Bugtraq: [ MDVSA-2012:007 ] openssl
  • Bugtraq: [ MDVSA-2012:006 ] openssl
  • Bugtraq: [ MDVSA-2012:005 ] libxml2
  • Bugtraq: Re: Multiple XSS in KnowledgeTree Community Edition
  • More rss feeds from SecurityFocus
 

Soroush Dalili – Computer Security Is My Interest!

Pages

  • About Me
  • Advisories
  • Contact Me
  • FAQs
  • Links
  • Projects
    • Cross Site Request Forgery (CSRF) PoC Template (by Javascript)
    • Excel Advanced Search Add-In Application

Stay In Touch

  • About Me
  • Advisories
  • Contact Me
  • FAQs
  • Links
  • Projects
    • Cross Site Request Forgery (CSRF) PoC Template (by Javascript)
    • Excel Advanced Search Add-In Application

More

Thanks for dropping by! Feel free to join the discussion by leaving comments, and stay updated by subscribing to the RSS feed.
© Soroush Dalili blog
iBlog by PageLines


Twitter Twitter 
LinkedIn LinkedIn