December 8, 2008 - 21:09 EST
Today was a disaster - I really messed it up.
November 11, 2008 - 19:21 EST
I just posted a new blog entry over at honeynor.no with at analysis of some of the SQL-injection attacks we've seen in Norway lately. Read the full post here: http://www.honeynor.no/2008/11/11/looking-at-some-sql-injection-attacks/
October 29, 2008 - 08:34 EDT
This week I have received several samples of a very similar looking malware. It's basically a .zip-file containing a "document". The last version I got was from "Your UPS". The reason I'm writing document with quotes is that it first appears to be a .doc file, but it has an .exe extension at the end after a lot of white space:
September 27, 2008 - 19:09 EDT
I attended SecVest
in Bergen for the first time this year. It was an interesting experience.
September 20, 2008 - 12:01 EDT
This year I was accepted as a speaker at Javazone
here in Oslo. Markus Harboe from mnemonic
and I had a presentation about the state of security in norwegian web applications, and what developers and project managers can do about it.
August 22, 2008 - 13:14 EDT
I was trying to figure out how to use client certificates with IIS, but IIS kept complaining with a message of "HTTP 403.13 - Forbidden: Client certificate revoked", even though the certificate was not revoked.
August 17, 2008 - 14:53 EDT
This year I attended Blackhat USA for the first time, and it was also my first trip to Las Vegas.
June 19, 2008 - 00:36 EDT
The last couple of days I've been attending NDC2008
(Norwegian Developer Conference) here in Oslo. Mats Torgersen's talk on LINQ under the covers was quite interesting.
June 5, 2008 - 09:22 EDT
We tried to setup an ADAM in our test environment that is using user proxies against AD. While the ActiveDirectoryMembershipProvider works with normal ADAM user accounts, we could not, however, log in with any of our proxy accounts.
May 28, 2008 - 21:07 EDT
Today I attended the first chapter meeting in the Norwegian OWASP chapter