The lucky 13th issue of Insecure Magazine
I read three articles in this issue, that I thought were excellent, (and I learned a lot):
- Social engineering, social networking services: a LinkedIn example
- Risk decision making: who calls it?
- Interview with Zulfikar Ramzan
The Web Application Hacker's Handbook
We knew this book was due out for a while and many people were excited about its release. Dafydd Stuttard (PortSwigger) of Burp Proxy fame was kind enough to send me an unreleased sample chapter so I could get a taste of what’s to come. Cool stuff inside. When I buy a brand new tech book, this is my buying criteria – The topic is of interest to me: Check. The Authors are experienced subject matter experts: Check. The ToC or sample chapter is exciting and well-written: Check!
Month of Bugs in Captchas
MustLive is at it again, but this time instead of targeting search engines, he’s going after broken and poorly implemented CAPTCHA systems. MustLive tells me he’s gearing the work to be educational by describing his analytical processes and the various attack techniques used to circumvent their protection. Now if he’s just leave my blog alone that’d make me happy. :) Depending on what MustLive has in store this could be really interesting and I’ll be following along.