From: Erin Carroll (amoeba@amoebazone.com)
Date: Tue Jan 23 2007 - 20:58:36 EST
The following Infocus technical article was published on SecurityFocus
today:
Testing Fault Injection in Local Applications By Chris Wysopal, Lucas
Nelson, Dino Dai Zovi, and Elfriede Dustin published 2007-01-23
This article is a book excerpt that looks at the approach and techniques
used to test the security of local applications. It describes local
resources and interprocess communication, how to enumerate the local
resources an application depends on, and then discusses methods of testing
several of those types of resources. It also describes how to test ActiveX
objects, command-line programs, and applications' use of local files and
shared memory.
http://www.securityfocus.com/infocus/1886
-- Erin Carroll Moderator SecurityFocus pen-test list "Do Not Taunt Happy-Fun Ball" ------------------------------------------------------------------------ This List Sponsored by: Cenzic Need to secure your web apps? Cenzic Hailstorm finds vulnerabilities fast. Click the link to buy it, try it or download Hailstorm for FREE. http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW ------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:33 EDT