Mon premier blog

Hunting Security Bugs Bryan Jeffries, Lawrence Landauer, Tom Gallagher
Publisher: Microsoft Press

His _stolen_ work came from the Microsoft Press book, "Hunting Security Bugs". This spun off into two further questions - What security measures to have before openly allowing security researchers to hack your site and What security concerns should one bear in mind when hacking open-invitation websites? So this post will look at all three. > > Ivan Sanchez- > NULL CODE SERVICES [ www.nullcode.com.ar ] Hunting Security Bugs! Getting Into Information Security Intelligence Gathering: A BlueHat v10 Retrospective from Speakers Ian Iftach Amit and Fyodor Yarochkin. Before we start, I must re-iterate: we are security professionals here, not in the act of attempting, whether or not the site in question has given you permission. Some sites actively encourage hunting for bugs. Software designed to support secure project management and security-oriented projects can be both feature rich and hardened against attacks. Hunting Security Bugs, Redmond, WA: Microsoft Press. What I'd like to see is the list updated (that list is for ASP.NET 2.0) and each method sorted for source or sink potential. Instead, the bug Alex found was a valid critical security flaw buried in the Firefox web browser. Alex is a bug hunter, but the bugs he's uncovering are unlikely to end up in any entomological reference book.