On 8/12/06, Tõnu Samuel <[EMAIL PROTECTED]> wrote:
Hi!
I give many classes about security and one major thing about
vulnerabilities is difficulty to understand how actually dangerous they
are. People often ask "so what" about all the stuff, like this NSA XSS
right now. I found useful to develop working demo exploits to make
people think bit different.
Now again, SPI Dynamics made paper about _javascript_ portscanning and
some people implemented nice demos like this one:
http://www.gnucitizen.org/projects/_javascript_-port-scanner/ And again
students ask "so what? Nice web frontend to portscanner".
So went further and made such web:
http://no.spam.ee/scanner/
For people I already shown it was common trend after that visit my pages
only with wget and curl :D
Tõnu
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
-- h0 h0 h0 --
www.nopsled.net
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
