Silicon Asylum

OWASP has announced a scripting competition for Zed Attack Proxy with $700 in prizes up for grabs. Details here: https://www.owasp.org/index.php/2015-08-ZAP-ScriptingCompetition .

I was on a boring conference call this morning and noticed I'd accumulated quite a glut of WebAppSec reading links. I figured I'd dump them here for people to peruse and give me a way to cleanup my bookmarks :) WebAppSec: XSS Vulnerability Shows How Security Issues Can Creep into Popular Software Sector Presentations (2014)   Generic XXE Detection   Hacking HTTPS -> HTTP referrers   Referrer CSRF Bypass ( Not Effective But Alternative )   Playing with Content-Type – XXE on JSON Endpoints   Clickjacking with Jack  Your Application Security Program: Flawless Logic for Big Savings   5 Steps for a Winning AppSec Program  SAML On Breaking SAML: Be Whoever You Want to Be   OWASP : Auth Cheat Sheet : SAML   ZAP SAML Extension (2yrs old as of 201507)  Cookie Bombing Browser Cookie Limits DoS attack on CDN users Cookie Bomb or let's break the Internet The maximum total HTTP header length for BIG-IP WebAccelerator and BIG-IP AAM is now 16,384 bytes Pract

So I'm not a heavy tablet user, but I did manage to snag a Nexus 7 (8GB) for free at a conference a few years ago. I use it (what I feel is lightly) for a few games, RSA soft token, email, some browsing/reading, etc. After upgrading to 5.0.2 it's been a painful beast. I had initially thought that this was likely due just to NEW OS and OLD hardware. However after doing some digging last night I came across a number of suggestions to wipe the cache partition. Instructions can be found here: How to wipe cache partition Nexus 7 or like this .

So I was thinking the other night, we've got cameras everywhere now and people take "Selfies". I predict that in the not too distant future we'll have rigs for using multiple cameras or we'll have some sort of Star Trek tech that allows us to take 3D images or scenes. Therefore I'm coining the term "Self3"* or "Self3D".....that's right folks you read it here first :D Next just this morning I caught an article on slashdot ( Making Best Use of Data Center Space: Density Vs. Isolation ). Which talks about an idea called "dense isolation" so I'm going to coin the term "densolation".....that's right you read it here first :)

I recently started reviewing campaigns on Kickstarter and thought I'd list a handful of them here. They don't or shouldn't necessarily mean anything to anyone else but I figured it's worth noting efforts of others and things I'm mildly interested in, whether it's for myself or others: https://www.kickstarter.com/projects/minsonbj/g6-belt-a-clean-comfortable-minimalist-belt https://www.kickstarter.com/projects/1412648491/kraut-source-fermentation-made-simple https://www.kickstarter.com/projects/194429923/star-trek-axanar https://www.kickstarter.com/projects/peak-design/slide-and-clutch-versatile-camera-sling-and-hand-s https://www.kickstarter.com/projects/266879788/hoborolltm-the-essential-stuff-sack-for-lifes-adve https://www.kickstarter.com/projects/1389924514/the-burger-master

Yes I'm posting March notables in April, but I've been sitting on these for a while. Crooked Souls : Crooked Parkers - Your soul is in question. Great site, print their citations and put them on windshields of those that park like asshats. Hopefully they save their souls by making a charitable donation. I also came across this image and it had some meaning to me so I thought I'd pass it along: More to follow.....