1 Feb 2013:

War is peace  also: python, ruby

6 Jun 2012:

Eval really is dangerous  also: python

1 May 2010:

The case of the secured server  also: work

13 Apr 2010:

An Apache break in

12 Jun 2009:

Quick links: short, right, anti  also: testing, quick links

15 May 2009:

Log in as a user  also: web

25 Jan 2009:

Browser security handbook  also: browsers

5 Sep 2008:

OpenID is too hard  also: web

10 Aug 2008:

Anatomy of a Subway Hack  also: boston

25 Jun 2008:

Spore creature creator and steganography  also: video games, graphics

21 Jan 2008:

Cross-site printing?  also: malware, printing

14 Mar 2007:

XSS bestiary  also: web, malware

21 Aug 2006:

Ruby on Rails security flap  also: ruby

13 Jun 2005:

Practical MD5 collisions

4 May 2005:

Web single signon  also: web

6 Jan 2005:

SQL injection attacks  also: databases

19 Aug 2004:

MD5 collisions  also: comp sci

29 Jun 2004:

Web walk: RC4 encryption  also: algorithms

26 Feb 2004:

Port knocking  also: networks

21 Oct 2003:

Terror profiles by computers are ineffective

18 Oct 2003:

Chain of trust  also: malware

30 Jan 2003:

Rights Amplification in Master-Keyed Mechanical Locks