avatar_128 Welcome to the aforementioned slinky and sultry Web 2.0 crap.

tumblr.attrition.org FAQ

 

Navigation

Tags

Links

Tools

 
 
 
 
Posts tagged "screenshot"
  1. Some discounts, you just can’t pass up.

    Some discounts, you just can’t pass up.

    1 year ago 
  2. Spammer let’s you unsubscribe, or not. SQLi instead maybe.

    Spammer let’s you unsubscribe, or not. SQLi instead maybe.

    1 year ago 
  3. LIGATT (twitter) (facebook): LIGATT Security did not get hacked! National Cyber Security is not run by LIGATT! It is not on any of LIGATT’s servers. It is run by the founder of the company and his networks. LIGATT does not get hack, we do the hacking!

    LIGATT (twitter) (facebook):

    LIGATT Security did not get hacked! National Cyber Security is not run by LIGATT! It is not on any of LIGATT’s servers. It is run by the founder of the company and his networks. LIGATT does not get hack, we do the hacking!

    1 year ago 
  4. @DisK0nn3cT:  @attritionorg hacks gregory evans bio page #ligatt http://twitpic.com/1z25qj@attritionorg: uh, the hell we did. someone unaffiliated with us tampered with the page, and is using a frame to load our content

    @DisK0nn3cT:  @attritionorg hacks gregory evans bio page #ligatt http://twitpic.com/1z25qj
    @attritionorg: uh, the hell we did. someone unaffiliated with us tampered with the page, and is using a frame to load our content

    1 year ago 
  5. Has anyone figured out where this is from?

    Has anyone figured out where this is from?

    1 year ago 
  6. Wonder why Twitter blocked access to this recently..

    Wonder why Twitter blocked access to this recently..

    1 year ago 
  7. There’s a joke or three here somewhere.

    There’s a joke or three here somewhere.

    1 year ago 
  8. LIGATT vulnerable to XSS #4, and why it matters Charlatan: Gregory D. Evans This pattern demonstrates that LIGATT has no regard for their own security, and likely does not have the technical proficiency to properly defend their web sites from XSS attacks. Since many of their services are based on customer accounts, XSS is particularly important to the sites as authentication credentials would be at risk from a serious XSS attack. Earlier today, on June 7, yet another XSS vulnerability was found in ligattsecurity.com. The initial tweet demonstrated the standard popup, and subsequent tweets demonstrated the injection of third-party content into LIGATT’s web site. The question remains, how can LIGATT promise to offer any level of security when they can’t protect their own sites from the most basic of XSS attacks over 22 days? Read More

    LIGATT vulnerable to XSS #4, and why it matters

    Charlatan: Gregory D. Evans

    This pattern demonstrates that LIGATT has no regard for their own security, and likely does not have the technical proficiency to properly defend their web sites from XSS attacks. Since many of their services are based on customer accounts, XSS is particularly important to the sites as authentication credentials would be at risk from a serious XSS attack.

    Earlier today, on June 7, yet another XSS vulnerability was found in ligattsecurity.com. The initial tweet demonstrated the standard popup, and subsequent tweets demonstrated the injection of third-party content into LIGATT’s web site. The question remains, how can LIGATT promise to offer any level of security when they can’t protect their own sites from the most basic of XSS attacks over 22 days?

    Read More

    1 year ago 
  9. nationalcybersecurity.com, run by LIGATT / Evans, vulnerable to XSS (again) Charlatan: Gregory D. Evans The administration/management login script on nationalcybersecurity.com is vulnerable to reflected cross site scripting. The affected (GET) URL parameter is “username.”

    nationalcybersecurity.com, run by LIGATT / Evans, vulnerable to XSS (again)

    Charlatan: Gregory D. Evans

    The administration/management login script on nationalcybersecurity.com is vulnerable to reflected cross site scripting. The affected (GET) URL parameter is “username.”

    1 year ago 
  10. nationalcybersecurity.com, run by LIGATT / Evans, vulnerable to XSS Charlatan: Gregory D. Evans The site search script on nationalcybersecurity.com is vulnerable to reflected cross site scripting. The affected (GET) URL parameter is “Query.”

    nationalcybersecurity.com, run by LIGATT / Evans, vulnerable to XSS

    Charlatan: Gregory D. Evans

    The site search script on nationalcybersecurity.com is vulnerable to reflected cross site scripting. The affected (GET) URL parameter is “Query.”

    1 year ago 
  11. Security Company Fail: Symantec hit by XSS from SecurityFocus Import

    Security Company Fail: Symantec hit by XSS from SecurityFocus Import

    1 year ago 
  12. PayPal fail. Did my transaction go through or not…

    PayPal fail. Did my transaction go through or not…

    1 year ago 
  13. Hertz unsubscribe failure. Way to handle no javascript. Virtual douchebags.

    Hertz unsubscribe failure. Way to handle no javascript. Virtual douchebags.

    1 year ago 
  14. Well, this is awkward…

    Well, this is awkward…

    2 years ago 
  15. Symantec’s twitter feed seems to be having issues. (Following vs Followers)

    Symantec’s twitter feed seems to be having issues. (Following vs Followers)

    2 years ago