Hacking Web 2.0 MindMap

Some work I did a while back to categorise Web 2.0 vulnerability types.

PNG file

http://michaeldaw.org/images/webhacking2_0.PNG

References

(6) Comments
Comment by Jeremiah Grossman on 5 January 2007 @ 9:36 pm

Hey, this is neat! Seems like this could really go somewhere. Where I dunno. There is a lot of terms and attacks in the space and its hard to organize, especially for people that aren’t able to do this stuff 24/7. This could be a could way to plugin and continue researching with proper context.

Comment by david.kierznowski on 5 January 2007 @ 9:57 pm

It is definately a “step forward”. I can visualise much more, but baby steps as they say. Thanks for the feedback.

Pingback by Operation n » Backdooring the Web 1 on 12 January 2007 @ 9:44 am

[...] So we embed malicious code into a Flash, PDF, DOM, HTML, Quicktime etc. Can this code by used to “bypass normal authentication?”, absolutely, can it be “hidden from casual inspection”, certainly. [...]

Comment by zeno on 31 January 2007 @ 12:32 am

For the web feed hacking part I got my blackhat slides and whitepaper at
http://www.cgisecurity.com/rss/ that you may find interesting.

- zeno

Comment by David Kierznowski on 31 January 2007 @ 11:52 pm

zeno, there is actually quite alot on cgisecurity.com that I could use for this project, cheerz.

Pingback by Operation n » Hotlinks and Persistent CSRF - leech the leech on 16 April 2007 @ 10:47 am

[...] released the Web Hacking 2.0 mindmap at the beginning of this year (2007). Someone from the Phoenix OWASP chapter liked the idea and [...]

Leave a comment

(required)

(required)