Malerisch.net - Homepage
opera stored cross site scripting - advisory (html) - October 2008
browser security - presentation (power point) - September 2008
negative seo: exposed - Kiwicon 2008 talk - September 2008
black energy 1.8 web-based botnet package analysis- presentation (power point) - May 2008
web spam techniques- article/presentation (html) (ppt) - Apr 2008
sugarcrm local file disclosure vulnerability- advisory (html) - Apr 2008
IE content type txt - observation (html) - Apr 2008
Negative SEO - interview (mp3) - Apr 2008
Negative SEO - citation (html) - Apr 2008
Xpath Injection - presentation (power point) - Feb 2008
Ajax Security - presentation (power point) - Dec 2007
New vectors of phishing - article (html) - Feb 2007
DotNetNuke vulnerability - advisory (html) - Aug 2006
The intent of this article is to start discussing potential consequences of phishing exploiting vulnerable web applications.
This article will go through the basics and it will then describe how one of the most popular web attacks (Cross Site Scripting) can be easily used in a phishing attack scenario and how phishers might use this vector of attack against media web channels.
More information here.