Last week I was at the Security-Zone 2007, which is the most important security related event we’ve got here in Switzerland (and it’s by the way absolutely for free). At this event Hans-Peter Waldegger and I had a talk in the name of the OWASP Switzerland Local Chapter, which was focused on structured application security [...]

I finished this paper about one month ago but I had to clarify some stuff with my employer Dreamlab Technologies Ltd. Now everything’s clear and I can publish my paper about an attack type I call XSIO – Cross Site Image Overlaying. It’s about something which I think many of you have already done but [...]

Normally I don’t like to do advertisement in my blog, especially not for companies. This time I’ll do it as an exception because Dreamlab Technologies Ltd., the company I’m working for has released a good paper about the next ten big security problems, we’ll probably run into in the near feature. I also gave my [...]