I’ve got a good comment from a guy called dre about my last blog entry. I had a look on the extensions he’s linked and because of there where so many I decided to set up a new blog entry for my statements to the extensions dre suggested, so here it is
PrefBar
Nice extension [...]

At least once per two weeks someone ask me, how to do webapplication security testings and as you probably know, it’s impossible to describe something like that in just a few sentences. So if this is my answer to these people, the next question follows immediately: What tools do you think do I need for [...]

This blog entry is once more just an information but I think it’s very important. Today the final version 2.0 of the OWASP Testing Guide (not the OWASP Guide) was released. From my point of view it’s very good and useful. You can get it under http://www.owasp.org/index.php/OWASP_Testing_Project.

When I was thinking about a new topic which I could post in my blog, I remembered an old idea of mine. Perhaps you know some of the so called “Hacker-Games” like Infon or Capture the Flag (CtF) Tournaments. Ok, these are fun but where’s the game for us, the web hackers? There’s nothing
So [...]

Because it’s very interesting, I’d like to show you how you can do a XSS attack an the most webapplications out there. The example I’ll present to you now is about the PDF-Plugin and it should make you think about other Browser Plugins like Flashplayer and so on.
The PDF Plugin have many different features you [...]