ModSecurity XSS Evasion Challenge Results
September 20, 2013 | Admin
On July 30th, we announced our public ModSecurity XSS Evasion Challenge. This ...
Hey, can I use your server for spamming?
September 19, 2013 | Phil Hay
Over the last few months I have encountered two separate cases of our customers ...
Top Five Ways SpiderLabs Got Domain Admin on Your Internal Network
September 19, 2013 | Theresa
It's always surprising how insecure some internal networks turn out to be. Less ...
Vino VNC Server Remote Persistent DoS Vulnerability
September 16, 2013 | Jonathan Claudius
Last week, I was making some performance enhancements to theVNC protocol ...
Trust for Sale
September 16, 2013 | Admin
Let's, for a moment, get into the mind of a cyber criminal:
Microsoft Advance Notification for September 2013
September 05, 2013 | Space Rogue
This month Microsoft continues the recent tradition of large Patch Tuesday with ...
SpiderLabs Radio August 30, 2013 w/ Space Rogue
August 30, 2013 | Admin
This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Setting HoneyTraps with ModSecurity: Adding Fake robots.txt Disallow Entries
August 26, 2013 | Ryan Barnett
The following blog post is taken from Recipe 3-2: Adding Fake robots.txt ...
SpiderLabs Radio August 23, 2013 w/ Space Rogue
August 23, 2013 | Admin
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Multiple Web Application Vulnerabilities in RockMongo
August 19, 2013 | Admin
During a recent code review for a client, I also took a brief look at a tool ...
[Honeypot Alert] Probes for Apache Struts 2.X OGNL Vulnerability
August 16, 2013 | Ryan Barnett
Today our web honeypot sensors picked up probes for the recent Apache Struts ...
SpiderLabs Radio August 16, 2013 w/ Space Rogue
August 16, 2013 | Admin
This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
The Web IS Vulnerable: XSS on the Battlefront (Part 1)
August 15, 2013 | Ryan Barnett
Microsoft Pulls MS13-061 Update for Exchange
August 14, 2013 | Admin
Microsoft has pulled one of the three critical patches from yesterdays Patch ...
Microsoft Patch Tuesday, August 2013
August 13, 2013 | Admin
The big news this month in Microsoft's Active Protections Program, other than ...
The Way of the Cryptologist
August 12, 2013 | Admin
SpiderLabs Radio August 9, 2013 w/ Space Rogue
August 09, 2013 | Admin
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Fun with 'Active Defense'
August 09, 2013 | Admin
Active Defense is steadily becoming a popular trend in the security field, both ...
Microsoft Advance Notification for Patch Tuesday – August 2013
August 08, 2013 | Space Rogue
No rest for the weary. Microsoft has announced that there will be eight ...
Introducing RDI – Reflected DOM Injection
August 06, 2013 | Daniel Chechik
The other day at DEFCON 21 we (Daniel Chechik and Anat Davidi) gave a talk ...
SpiderLabs Radio August 2, 2013 w/ Space Rogue
August 02, 2013 | Admin
This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Announcing the ModSecurity XSS Evasion Challenge
July 30, 2013 | Ryan Barnett
The SpiderLabs Research Team is pleased to announce the release of the ...
SpiderLabs Radio July 26, 2013 w/ Space Rogue
July 26, 2013 | Admin
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
SpiderLabs Radio July 19, 2013 w/ Space Rogue
July 19, 2013 | Admin
This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Top Ten Survival Tips for the Dehydrated N00b Zombie Apocalypse at Security Week 2013
July 17, 2013 | Admin
Just look at the face: it's vacant, with a hint of sadness. Like a drunk who's ...
ModSecurity Advanced Topic of the Week: Mitigating XSS Vulnerabilities Using Targeted CSP Enforcement
July 15, 2013 | Ryan Barnett
Content Security Policy (CSP) Implementation Challenges CSP is an extremely ...
SpiderLabs Radio July 12, 2013 w/ Space Rogue
July 13, 2013 | Admin
This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Spiders Are Fun!, DEF CON's 21, Come Chat at Black Hat
July 13, 2013 | Admin
Security week in Las Vegas will be here before we know it. The SpiderLabs team ...