• The many faces of an IP address

    Valid IP addresses necessarily need not look "valid". IP addresses can be represented in idefinitely different ways, therefore it cannot be determined if a value is an IP address or not.

  • The dangers of trusting HTTP headers

    HTTP headers can be set by users and they can be very dangerous if you are using their values anywhere in the application logic, or are writing or storing (and eventually writing) their values anywh...

  • Passface – an alternative authentication system

    Make a face to authenticate yourself! I have absolutely no idea if someone else has thought up this concept yet or not, I got this idea a few days ago and worked on it quite a bit decided I'll share ...