a4apphack

Archive for October, 2009

Indian Income Tax Phishing Site

Posted by rajivvishwa On October - 19 - 2009

Today I received a mail from the sender ‘India Tax Departament’ that I am yet to receive the tax refund amount. Since I received this in my gmail id, the images weren’t displayed by default. The first this I did was to check the sender email id and it was from ‘wnrlky@aol.com‘. I can assume that this id has been long used for phishing attacks (the id resembles ‘winnerlucky’).

India Income Tax Phishing Mail

India Income Tax Phishing Mail

Then I enabled the images to check whether he had embedded any government emblems. But to my surprise it was written ‘Australian Government’ :D . May be this was not targeted to Indians first. After understanding that this is a fraud mail, I wanted to read the entire mail and find out the URL under interest.

Read the rest of this entry »

Featured, Security

Web AppSec Testing Checklist (OWASP Based)

Posted by rajivvishwa On October - 16 - 2009

Web AppSec Testing Checklist is an Excel based checklist which helps you to track the status of completed and pending test cases. This helps you to organize the flow of your testing process and also to ensure that none of the test cases are missed out.

WebApp Sec Checklist

WebApp Sec Checklist

This checklist is completely based on OWASP Testing Guide v 3. The OWASP Testing Guide includes a “best practice” penetration testing framework which users can implement in their own organizations and a “low level” penetration testing guide that describes techniques for testing most common web application and web service security issues.

Read the rest of this entry »

Featured, Security

Subscribe RSS
Follow me on TwitterTechnoratiYoutube VidsLinkedIn ProfileDelicious

    Popular Posts

    Most Commented

    Recent Posts

    Recent Comments