Soroush Dalili – Computer Security Is My Interest!

Soroush Dalili's blog – بلاگ سروش دلیلی
icon
  • Home
  • About Me
  • Advisories
  • Contact Me
  • FAQs
  • Links
  • Projects
    • Cross Site Request Forgery (CSRF) PoC Template (by Javascript)
    • Excel Advanced Search Add-In Application

IIS5.1 Directory Authentication Bypass by using “:$I30:$Index_Allocation”

On July 1, 2010, in My Advisories, Security Posts, by Soroush Dalili
7 Comments
Leave A Response

Tagged with: IIS5.1 Authentication Bypass 

Crowzers or Carzy Browsers:

On June 30, 2010, in My Advisories, Security Posts, by Soroush Dalili
0 Comments
Leave A Response

Tagged with: browser address bar lock • browser crash • fix iframe src 

Cross Site URL Hijacking by using Error Object in Mozilla Firefox

On May 27, 2010, in My Advisories, Security Articles, Security Posts, by Soroush Dalili
3 Comments
Leave A Response

Tagged with: Cross Site URL Hijacking • Cross Site URL Hijacking by Error Object • XSUH by error object • XSUH in Mozilla Firefox 

New Method: Role of the “/” character in mapping the website directories! – Webservers fault?

On May 6, 2010, in Security Articles, Security Posts, by Soroush Dalili
0 Comments
Leave A Response

Tagged with: Mapping directory • Mapping folder • Slash role • using slash as a signature 

IE7-8 drive list enumeration!

On March 4, 2010, in My Advisories, Security Posts, by Soroush Dalili
1 Comments
Leave A Response

 
Previous Entries Next Entries

Categories 

  • My Advisories (8)
  • Normal Posts (22)
  • Security Articles (17)
  • Security Posts (31)
 

Recent Posts 

  • Drag and Drop XSS in Firefox by HTML5 (Cross Domain in frames)
  • “Advisories” has been updated
  • Flash ExternalInterface.call() JavaScript Injection – can make the websites vulnerable to XSS
  • Travian Game Patch – Finally!
  • Unrestricted File Download V1.0 – Windows Server
 

Tags 

All Facebook Application Walls block ip block isp Blog Template by using iMacros close advertisment computer science vulnerabilities credit card algorithm credit card algorithm is equal to IMEI algorithm Critical vulnerabilities CSRF Attacks educational bug finding Facebook Add Friend Facebook Automatic Friend Add Facebook Automation Friend Facebook Game Cheat FaceBook MobWars Cheat final project article free web hosting ftp vulnerabilities hacking videos IMEI algorithm javascript to close advertisements java vulnerabilities logical flaw Microsoft IIS Vulnerability National ID Code Algorithm National ID Code JavaScript Phishing attacks Privacy soroush dalili sql injection tutorial travian game travian hack travian online game university of birmingham vulnerabilities Web application security in ASP Web application security in ASP - (simple) JSP Web application security in JSP weblogs website vulnerability XSS XSS Vulnerability الگوریتم کد ملی کد ملی
 

RSS OWASP Feeds 

  • Extending Burp Suite to solve reCAPTCHA January 22, 2012
  • Hacking Web Authentication – Part 2 January 19, 2012
  • Microsoft Anti-XSS Library Bypass (MS12-007) January 19, 2012
  • The Ascendancy of the Application Layer Threat - SYS-CON Media (press release) (blog) January 19, 2012
  • XMLHttpRequest Level 2 Draft Published January 18, 2012
 

RSS Symantec Security News 

  • When i am install symantec endpoint again roll backInstallation Rollback January 22, 2012
  • how to importing active directory to SEPM server January 22, 2012
  • Need to upgrade windows 2003 to 2008 January 22, 2012
  • WSCSavNotifier.exe January 21, 2012
  • Unable to open Database Backup and Restore console January 21, 2012
 

RSS New Vulnerabilities 

  • Vuln: Pligg CMS 'status' Parameter SQL Injection Vulnerability December 29, 2012
  • Vuln: Avaya WinPDM Multiple Buffer Overflow Vulnerabilities January 20, 2012
  • Vuln: WhatsApp Multiple Security Bypass Vulnerabilities January 20, 2012
  • Vuln: Logsurfer 'prepare_exec()' Double Free Local Denial of Service Vulnerability January 20, 2012
  • Bugtraq: [ MDVSA-2012:010 ] cacti
  • Bugtraq: [ GLSA 201201-04 ] Logsurfer: Arbitrary code execution
  • Bugtraq: DC4420 - London DEFCON - 24 January 2012
  • Bugtraq: InfoSec Southwest 2012 Open Registration
  • More rss feeds from SecurityFocus
 

Soroush Dalili – Computer Security Is My Interest!

Pages

  • About Me
  • Advisories
  • Contact Me
  • FAQs
  • Links
  • Projects
    • Cross Site Request Forgery (CSRF) PoC Template (by Javascript)
    • Excel Advanced Search Add-In Application

Stay In Touch

  • About Me
  • Advisories
  • Contact Me
  • FAQs
  • Links
  • Projects
    • Cross Site Request Forgery (CSRF) PoC Template (by Javascript)
    • Excel Advanced Search Add-In Application

More

Thanks for dropping by! Feel free to join the discussion by leaving comments, and stay updated by subscribing to the RSS feed.
© Soroush Dalili blog
iBlog by PageLines
Twitter Twitter LinkedIn LinkedIn