Thanks to the yehg.net, we added an additional resource to our site. It's a General Web Application Assessment Report Generator/Checklist of OWASP's Testing Guide version 3.



Read More...

Tags: OWASP Testing Guide V3 | Web Application Assessment Reports

If in any case, you encounter a minor hiccup while attempting to launch w3af's GUI from the command line and you encounter the following error message:

The DISPLAY environment variable is not set! You can not use any graphical program without it...

Read More...

Earlier today, Google, Inc.s' Security Team announced that they'e rolling out new updates to their well known Vulnerability Rewards Program. I must say, Google's Security Team is injecting a frame of mind into modern day hackers, security researches and large corporations that may change the tide of a conversation about vulnerability disclosure morals.


Read More...

Tags: Google Bugtraq

Oops!... w3af can't be started?
Hopefully this didn't happen a few minutes before the start of an engagement. If this ever happens to you then I'd expect for you or someone in your team to know how to quickly overcome environmental mishaps.

Read More...

On 04APRL2012, I sat in and passed GIAC's GWAPT exam. It was challenging but not difficult to pass. I'll keep this short and to the point. Below is list of tasks, study material and links required to prepare for the exam. I'm assuming you've already met the prerequisites.


Read More...

Tags: GWAPT | SANS | SEC-542 | Web Application Penetration Testing

.This script was forked from github:
DOWNLOAD URL: https://gist.github.com/1953902

1. # Download the script
2. # Execute it
3. # Pay attention to the output. You may need to tailor the script to your Mac OS X shell environment.

Read More...

Tags: Shell Scripts