Questions? Call 877-752-7170 or contact@fyrmassociates.com

Black Hat

Cross Site Scripting Anonymous Browser (XAB) Proof-of-Concept Released

Today I finally found the time to release the XAB Proof-of-Concept code. An apology to those of you who have been emailing us wondering when we would publish it. For the time being, it’s hosted at sourceforge and you can download the code from the XAB project page located at: [http://sourceforge.net/projects/xab] (http://sourceforge.net/projects/xab) We’ve submitted talks to Black Hat and Defcon for the updates we’re working on, so hopefully we’ll have the chance to catch everyone up, solicit some more feedback, and grab a brew.

Continue reading

Black Hat / DEF CON 2009 Reception

We’ll be hosting an informal reception at the [Hofbräuhaus] (http://www.hofbrauhauslasvegas.com/) Las Vegas on Thursday, July 30 to celebrate Tony, Matt, and Jeff’s Black Hat and DEFCON presentations. Please RSVP to rsvp[shift+2]fyrmassociates.com or talk to one of the guys wearing the FYRM Associates shirts at Black Hat. The beer will start flowing at 6 PM and we’ll be around until at least 8 PM.

Continue reading

Black Hat DC 2009 Presentation

My abstract for this year’s Black Hat DC was picked up. I’ll be presenting the XSS Anonymous Browser tool, or XAB for short. I’m currently hammering out some of the more technical aspects of the tool, but I’ll have a working proof of concept ready for the conference. Plus if there’s time (who am I kidding?), I’ll release a second tool that is a great defense against the attack vectors that XAB utilizes.

Continue reading