Malerisch.net - Homepage - 
Defending Against Application Level DoS Attacks
20/07/2010 - I have uploaded some of the presentations given at the OWASP NZ Day 2010 security conference. My talk about "Defending against application level DoS attacks" is also available at this link. The talk summarises known DoS application attack vectors which I have often encountered when performing security assessments. Some recommendations are also part of the talk, which can be helpful when reviewing BCP and incident plans.
Final Agenda - OWASP New Zealand Day 2010
05/07/2010 - Final agenda for the Owasp New Zealand Day 2010 has been published today. I will also be talking about Layer7 DoS attacks and defenses.
This talk will summarise some notes/ideas I have been collecting in previous assessments when encountering funny/interesting features/enviroments
which could be trivially DoSed ;-)
OWASP New Zealand Day 2010
22/04/2010 - Following the success of the OWASP New Zealand 2009 security conference which attracted more than 150 attendees, the OWASP New Zealand Chapter decided to organise the OWASP New Zealand Day 2010. The event will be held on the 15th July 2010 in Auckland. more
White Paper - Cross Context Scripting with Firefox
22/04/2010 - For the last year, we have been focusing on
Firefox Extension security and we have now released a research paper and an addendum
on the topic of Cross Contex Scripting (XCS).
The research paper "Cross Context Scripting
with Firefox" demonstrates different ways of attacking Firefox extensions via Cross Context Scripting (XCS) vulnerabilities.
Several XCS cases are detailed, including vulnerable extension code and exploit. white paper
The addendum "Exploiting Cross Context Scripting vulnerabilities in Firefox" includes a number of exploits tailored for Cross Context Scripting vulnerabilities. addendum
Multiple Adobe Products - XML External Entity And XML Injection
22/02/2010 - Multiple Adobe Products are vulnerable to XML External Entity (XXE) and XML Injection attacks. advisory
Defcon 17 Video Online
24/01/2010 - The video of our Defcon 17 presentation is finally online and it is available from the Defcon web site. Some live demos are included in the second part of the talk. Enjoy!
Another Firefox Extension advisory
13/01/2010 - This comes from Nick Freeman and affects the Yoono Firefox extension. A very sweet bug ;-).
Twitter XSS
14/11/2009 - Not sure if some people noticed, but an interesting XSS vector was found affecting the Twitter web site last November, by Rosario Valotta. When Rosario contacted me, I couldn't believe when looking at the XSS payload. After some talking, I suggested the use of document.write to bypass some Twitter input filtering controls. This allowed Rosario's injection to include a <script> tag as well. The bug was also disclosed on Full-Disclosure. I just wonder about the so "many" implications of having that kind of XSS bug on Twitter. Happy to not use Twitter ;-)
SecurityByte & OWASP AppSec Asia 2009 and three 0days released
19/11/2009 - I have been talking at the SecurityByte and OWASP AppSec Asia 2009 conference in India, Gurgaon. It was my first time there and as I love travelling, I coulnd't miss this opportunity. The conference was great, well organised and I have met very interesting people. Definitely recommended! During the talk, three 0days were finally released, which myself and Nick Freeman previously disclosed to the vendors. A video interview was also published online, just after the conference.
2 Firefox Extensions Chrome Privileged Code Injection
25/08/2009 - Coolpreviews and Update Scanner Firefox Extensions are vulnerable to Cross Site Scripting injection. coolpreviews advisory - update scanner advisory
Exploiting Firefox Extensions - Interview on Risky.biz
24/08/2009 - Risky.biz recently published our interview with Paul Craig at the OWASP New Zealand Day about exploiting Firefox extensions. more
Defcon 17 - Presentation
24/08/2009 - Defcon was great! Our presentation is now online ;-) download
Defcon 17
24/07/2009 - Myself and Nick Freeman are going to Las Vegas to present at Defcon 17 on "Abusing Firefox extensions". This time we will show more exploits and bugs ;-). We are on track 4 - 2pm. Check the Defcon schedule.
Backdooring Windows Media Files
20/07/2009 - Rosario Valotta recently released a comprehensive white paper on "Backdooring Windows Media Files". Many interesting points are covered, especially intranet scanning and ftp attacks via SAMI files. More info on his blog.
OWASP New Zealand Day 2009
13/07/2009 - OWASP NZ Day has been a great event with more than 150 attendees, 7 talks, lot of drinks and fun! ;-) The presentations have been published online and are available for download. Key points of the day are covered in an excellent article of Kirk Jackson.
OWASP nz Day - Speakers announcement
08/06/2009 - Speakers have been announced for the OWASP NZ Day 2009 conference! Also, more than one hundred of registered people attending! Great result! ;-). speakers and talks
EUSecWest 2009
07/06/2009 - Just came back from Europe, London, after been presenting at EUSecWest about "Exploiting Firefox Extensions" with Nick Freeman. It was a really cool conference with very good topics. Our presentation slides are online. download
OWASP New Zealand Day 2009
05/03/2009 - We are organising the first all day security conference entirely dedicated to web application security in New Zealand: OWASP New Zealand Day 2009, Auckland, 13th July 2009. Don't miss it!
OWASP Testing Guide v3.0
05/03/2009 - OWASP Testing Guide v3.0 has been recently published. I partially contributed to it. For those interested, it is also available as a printed book from Lulu. more
Google Analytics - Stored Cross Site Scripting
08/12/2008 - Google Analytics is vulnerable to Stored Cross Site Scripting. A malicious user is able to inject arbitrary browser content through web sites subscribed to the Google Analytics service. more
sed v0.2
25/11/2008 - search engine de-optimisation tool update. more download
opera stored cross site scripting
22/10/2008 - Opera browser is vulnerable to stored Cross Site Scripting. A malicious attacker is able to inject arbitrary browser content through the websites visited with the Opera. more
sed v0.1
28/09/2008 - search engine de-optimisation tool released. more download
Ruxcon 2008
12/09/2008 - I will also speaking at Ruxcon about negative SEO. Don't miss this talk if you can't make it at Kiwicon! ;-) .
browser security
07/09/2008 - I have done some research in the area of browser security and presented this argument at the last OWASP NZ meeting. The presentation can be downloaded from the OWASP web site or from here.
Kiwicon 2008
01/09/2008 - I will be speaking at Kiwicon about negative SEO. Don't miss this talk if you love playing with search engines ;-) .
Black Energy 1.8 web-based botnet package analysis
28/05/2008 - This presentation was given at "Hack In The Bush" internal training and that's an analysis of one of the latest russian web-based botnet packages. download
Web Spam Techniques
30/04/2008 - Last OWASP NZ meeting was great and we talked about Flash exploits and web spam techniques. I thought I could make an article out of it and it is available here. The web spam techniques presentation can be downloaded from the owasp web site or from here.
sugarcrm local file disclosure
29/04/2008 - SugarCRM Community Edition is vulnerable to local file contents disclosure. This vulnerability can be exploited by a malicious user to disclose potentially sensitive information. more
IE and content-type text
27/04/2008 - Using IE? Then be aware of txt files. In fact, IE treats txt files as HTML. Consequently it is possible to have JavaScript executed by IE for text files. more
negative SEO
08/04/2008 - I am currently researching on this topic. Here is an interview I had with Risky Business (IT Security Podcast) about. For more information, there is also an article on ZDNet Asia.
xpath injection
28/02/2008 - In the last Owasp NZ meeting (21st February), we talked about Xpath and we covered some Xpath Injection techniques. The presentation can be downloaded from the owasp web site or from here.