« There's a New AppScan In Town | Main | Google Chrome Universal XSS Vulnerability »

February 27, 2009



WOW! Pretty amazing stuff. I was reading this from the airport's hotspot - Hope I wasn't infected :)
I liked the double active attack concepts described in your slides.
Would you expect more of your Active attacks to be identified in the future?

Roi Saltzman

Hi Nathan,
Since the nature of the Active attack scenarios we described (i.e. Stealing session cookies, Cache poisoning) is that of design, not implementation - it is entirely feasible that we will see new Active attack scenarios in the future.

Verify your Comment

Previewing your Comment

This is only a preview. Your comment has not yet been posted.

Your comment could not be posted. Error type:
Your comment has been posted. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.


Post a comment

Your Information

(Name is required. Email address will not be displayed with the comment.)

Follow us on Twitter

AppScan Free Trial

Try IBM Security AppScan software at no charge.

Become a Fan