SpiderLabs Radio Updated - Hack It! Edition for February 2011
March 29, 2011 | Admin
A new SpiderLabs Radio - Hack It! Edition podcast has been uploaded.
Latest Web Hacking Incident Database (WHID) Entries(7)
March 28, 2011 | Ryan Barnett
These are the lastest entries added by SpiderLabs to the Web Application ...
Detecting Malice with ModSecurity: Open Proxy Abuse
March 25, 2011 | Ryan Barnett
This week's installment of Detecting Malice with ModSecurity will discuss how ...
ModSecurity Advanced Topic of the Week: Malware Link Detection
March 17, 2011 | Ryan Barnett
Planting of Malware Planting of malware links into legitimate websites in order ...
WASC WHID Semi-Annual Report for 2010: July - December
March 14, 2011 | Admin
SpiderLabs just released our WASC Web Hacking Incident Database (WHID) ...
ModSecurity Advanced Topic of the Week: Inbound/Outbound Correlation
March 11, 2011 | Ryan Barnett
Alert Management - Correlated Events One important alert management issue for ...
TWSL2011-003: Vulnerabilities in Avocent Cyclades ACS Web Manager
March 11, 2011 | Josh Grunzweig
The SpiderLabs team at Trustwave published a new advisory today, which details ...
Mobile Visability Limitation? There's an App for that.
March 08, 2011 | Josh Grunzweig
Last July myself and Christian Papathanasiou presented a DEF CON 18 talk ...
thicknet: Griefing Boss Hogg
March 04, 2011 | nosteve
Most things I do seem really awesome at the time. Like the time I was at the ...
ModSecurity Advanced Topic of the Week: Passive Vulnerability Scanning Part 1 - OSVDB Checks
February 23, 2011 | Ryan Barnett
One of the most under-appreciated capabilities of web application firewalls ...
Network Encryption in Modern Relational Database Management Systems
February 23, 2011 | Martin Rakhmanov
In this post I'll continue on the topic of data encryption (see my previous ...
ModSecurity Advanced Topic of the Week: Real-time Application Profiling
February 17, 2011 | SpiderLabs Anterior
One of the key feature differentiators between ModSecurity and other commercial ...
Java Floating Point DoS Attack Protection
February 15, 2011 | Ryan Barnett
As many of you may have heard, there is an interesting Java DoS scenario out -
NASDAQ News Renews Focus (sort of)
February 07, 2011 | Admin
Reactive security is a common theme within many organizations and the reaction ...
TWSL2011-002: Vulnerabilities in Comcast DOCSIS 3.0 Business Gateways (SMCD3G-CCR)
February 05, 2011 | Josh Grunzweig
The SpiderLabs team at Trustwave published a new advisory yesterday, which ...
LOIC DDoS Analysis and Detection
January 28, 2011 | Ryan Barnett
Submitted By Rodrigo Montoro
Advanced Topic of the Week: Generic Attack Payload Detection
January 27, 2011 | Ryan Barnett
The Inevitable Bypass of Blacklist Filtering Let's face the facts, blacklist ...
Trustwave's Global Security Report 2011- Now Available
January 20, 2011 | SpiderLabs Anterior
Today we released Trustwave's Global Security Report 2011 (short registration ...
Trustwave's Global Security Report 2011: Web Application Risks
January 20, 2011 | Ryan Barnett
Yesterday, we released Trustwave's Global Security Report 2011 (short ...
SpiderLabs at Black Hat DC 2011
January 12, 2011 | SpiderLabs Anterior
Next week, there will be several members of the SpiderLabs team at Black Hat ...
Detecting Malice with ModSecurity: CSRF Attacks
January 11, 2011 | Ryan Barnett
This week's installment of Detecting Malice with ModSecurity will discuss how ...
ModSecurity Advanced Topic of the Week: Credit Card Tracking
January 04, 2011 | Ryan Barnett
The just released CRS v2.1.0 includes Credit Card Tracking rules. These will ...
Welcome to SpiderLabs Anterior!
January 03, 2011 | SpiderLabs Anterior
SpiderLabs is the advanced security team at Trustwave with a focus on ...
Welcoming Tom Brennan to SpiderLabs
January 03, 2011 | SpiderLabs Anterior
I am pleased to announce that industry veteran Tom Brennan has joined the ...
Announcing Release of OWASP ModSecurity Core Rule Set v2.1.0
December 29, 2010 | Ryan Barnett
I am pleased to announce the release of the OWASP ModSecurity Core Rule Set ...
(Updated) Advanced Topic of the Week: Handling Authorized Scanning Traffic
December 21, 2010 | Ryan Barnett
Updated - the latest OWASP ModSecurity CRS release has a rules file to handle ...
thicknet: starting wars and funny hats
December 13, 2010 | nosteve
Man-in-the-middle attacks are old. Really, really old. Maybe even as old as ...
New Director of SpiderLabs EMEA Announced
December 08, 2010 | SpiderLabs Anterior
I am very pleased to be able to announce on this blog that the SpiderLabs team ...