Yes, still one more Black Hat Microcast to go. This is the longest microcast in my pack so far, and Shawn and Nathan did a great job running through the gist of their talk, “Weaponizing the Web.” They discuss Cross-Site Request Forgery (CSRF) a bit, but with the added notion of applying it to sites that take user contributed content. They’ve also released a proof-of-concept tool, called MonkeyFist, to help demonstrate what they call “dynamic CSRF” attacks. (Note: I apologize for splicing an additional intro in there as it wasn’t originally captured very well on the mic).

Black Hat Microcast 8 – Moyer and Hamiel

Posted by quine, filed under Uncategorized. Date: August 2, 2009, 11:13 am | No Comments »

Leave a Comment

Your comment

You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Please note: Comment moderation is enabled and may delay your comment. There is no need to resubmit your comment.