Skip to content

{ Tag Archives } Paper

New Whitepaper: JBoss AS – Deploying WARs with the DeploymentFileRepository MBean

We released a new JBoss security whitepaper with the title “JBoss Application Server – Deploying WARs with the DeploymentFileRepository MBean” today. It explains how to deploy WAR files with the DeploymentFileRepository MBean and how this is even possible with Cross Site Request Forgery (CSRF). The paper is available at
http://www.redteam-pentesting.de/publications/jboss
This new informational page also contains the [...]

Also tagged , , , ,
2010 06 15 phof Paper Comments (0)

JBoss Paper: English version released

We finally came around to translate and release the 27+ pages of our JBoss paper (see also this post). That was quite some work, the first versions of my translations always read like a one-to-one translation from German. Then I read it again and correct those horribly sounding sentences to what I hope is [...]

Also tagged ,
2009 12 01 phof Hacking
Paper Comments (1)

English Paper about Man-in-the-Middle Attacks against chipTAN Online

The English version of the paper we released yesterday is now also online, title: “Man-in-the-Middle Attacks against the chipTAN comfort Online Banking System”:
http://www.redteam-pentesting.de/en/publications/MitM-chipTAN-comfort
Have fun.

Also tagged , ,
2009 11 24 phof Hacking
RedTeam Comments (0)

Man-in-the-Middle Attacks against the chipTAN comfort Online Banking System

As promised, we have released information about the attacks we developed against chipTAN comfort today. Have a look at our website:
http://www.redteam-pentesting.de/de/publications/MitM-chipTAN-comfort
You’ll find our press release (in German) and a paper (also in German) there, giving you all the details about the three attacks we came up with. I’m sorry that I didn’t get the [...]

Also tagged , , ,
2009 11 23 phof Hacking
RedTeam Comments (0)