My experiences at NullCon 2014 16 February 2014 newuser09876 (0) Finally, NullCon 2014 broke my inertia and pulled me back to my blog. Experience taught me that large tech meets will give wonderful memories which will soon be forgotten. So I thought of recording my little experiences in my blog, which for sure I will cherish for years to come. Undoubt... [More]
Contributing to CSI communications 15 December 2013 newuser09876 Blog (0) I have been busy with multiple projects in the last few months and couldn't spend much time on my blogging activities. However, I have been contributing to IT community on a larger scale by writing articles for Computer Society of India. So far I have written 7 articles (July 2013 - Jan 2014) on web... [More]
Automating tasks with headless browsers 30 July 2013 newuser09876 (0) PhantomJS is a headless browsers (based on Webkit) and is a useful tool in a web developer's toolkit. Headless browsers are browsers without a user interface and can be invoked via command line. Most of the browsers functionalities such as network traffic analysis, screen shot capture etc. ar... [More]
Analyzing the new social engineering spam on Facebook - lady with an axe 19 June 2013 newuser09876 (0) Spammers are everywhere and are waiting desperately for stealing user information, mass advertisements etc. and Facebook is no exception. Until a couple of years back, there were a lot of spams flooding Facebook. Most of them used clickjacking, drive by download of browser extensions, making users e... [More]
Third party content-The paradoxes of the web 30 May 2013 newuser09876 (0) When the World Wide Web started, it was just a bunch of static HTML pages which are interconnected by hyperlinks. More importantly, each website had content which was loaded from its own server (technically speaking, no cross origin content). Today, the web we browse daily has content which originat... [More]
Microsoft MVP award - One more time 01 April 2013 newuser09876 (0) Elated and excited! This is the fourth consecutive year that I have received Microsoft Most Valuable Professional (MVP) award. This time too, I got it in "Internet Explorer" category. Here are some of the useful links that can help interested folks: >> About Microsoft MVP award program:&nb... [More]
A few things beyond the scope of Content Security Policy 31 March 2013 newuser09876 (0) As a follow up of my posts “The uncontrollable web platform” and “The promises of CSP to secure the web”, in this post, I would like to highlight some of the things which are beyond the scope of Content Security Policy. If you have noticed, I did not title the post as “... [More]
Talks at Techny 2013 and MUGH Feb meet 27 February 2013 newuser09876 (0) Glad to say that I had the opportunity to interact with a large student gathering at Warangal. The event was Techny 2013 and there were about 600+ energetic and enthusiastic students. I have presented on topics covering security of the modern web, the role of browsers and opportunities for rese... [More]
The promises of Content Security Policy to secure the web 25 January 2013 newuser09876 (0) In my previous post, “The uncontrollable web platform”, I have discussed at a high level the core security policy current browsers have (i.e., Same Origin Policy, SOP) and why it is insufficient to secure the modern web. As said in the post, researchers have put in lot of efforts to desi... [More]
The uncontrollable web platform and Browser security 25 December 2012 newuser09876 (0) On the web, every other day we see a new JavaScript library, a new framework, a browser hack or an innovative way of using/bypassing some feature for building something good. Most of us are so deeply involved in learning, constructing new things that we almost forgot, failed to care or understand th... [More]