White Papers Archives | Page 2 of 2

Doppelganger Domain Attack

25-September-20111-October-2011Prasanna Sherekar

Domain typo-squatting is commonly used to spread malware to users whom accidentally misspell a legitimate domain in their web browser. A new type of domain typo-squatting takes advantage of an omission instead of a misspelling. A Doppelganger Domain is a domain spelled identical to a legitimate fully qualified domain name (FQDN) but missing the dot […]

How I cross-site scripted Twitter in 15 minutes

5-September-20095-September-2009Prasanna SherekarLeave a Comment

How I cross-site scripted Twitter in 15 minutes, and why you shouldn’t store important data on 37signals’ applications “Today the Ruby on Rails security team released a patch for a cross-site scripting issue which affected multiple high-profile applications, including Twitter and Basecamp. If you’re concerned about the issue and would like to see the patch, […]