The Open Data Protocol (OData) is an open web based RESTful protocol for querying and updating data. This paper discusses OData penetration testing methodology and techniques.
1b62d466847cec22c497a72fa0fe279d3bd1de562ba4265594efc26f9d86694d
Whitepaper called SSLSmart - Smart SSL Cipher Enumeration. This document focuses on the SSLSmart tools uses and applications.
ec20d886937495f49d10cb1c4cfc452d827a0bd0e17f163ce6002c28b2637c7d
SSLSmart is an open source, highly flexible and interactive tool aimed at improving efficiency and reducing false positives during SSL testing. A number of tools allow users to test for supported SSL ciphers suites, but most only provide testers with a fixed set of cipher suites. Further testing is performed by initiating only an SSL socket connection with one cipher suite at a time, an inefficient approach that leads to false positives and often does not provide a clear picture of the true vulnerability of the server. SSLSmart is designed to combat these shortcomings.
cf73c47ed1f965d7f82ebe8c649c3b847436056c2533fdd0ed606877e59e2b47
mChek version 3.4 suffers from multiple information disclosure vulnerabilities.
4b697710e11bd18ff568127838244f0c6f55b49f63b49517d2f97159eb399a80
Mobile Rediff suffers from a username and password disclosure vulnerability.
5ae381e30bdf914bd1f330628663502555fd19e691346335b2ccaae5a0726a7d