Profile

Cover photo
Ben Toews
Works at GitHub
Lives in Chicago
17,281 views
AboutPosts

Stream

Ben Toews

Shared publicly  - 
 
Yessss!!!! Killer quadcopters.
That right there is Sydney Golden Wattle, a fast-growing invasive species native to Eastern Australia that has the possibility of covering 20 percent of the bushland in Western Australia by the year 2020. [John Moore], a researcher at the Department of Food and Agriculture, wants to put an end to this infestation by destroying large swaths of wattle with a quadcopter armed with weed killer. The plan for the robotic plant assassins is simple; take...
1
Add a comment...

Ben Toews

Shared publicly  - 
 
Beer night
2
Jim Oltman's profile photoBen Toews's profile photo
2 comments
 
It was a long night :D
Add a comment...

Ben Toews

Shared publicly  - 
 
:D
1
Add a comment...

Ben Toews

Shared publicly  - 
Metasploit Penetration Testing Software | Metasploit Framework ... Metasploit helps IT security professionals identify security issues, verify vulnerability mitigations, and manage security assessment...
1
Scott Behrens's profile photo
 
bing also doesnt put a limit on their api like google does, so alot of the google dork tricks work on bing.
Add a comment...

Ben Toews

Shared publicly  - 
1
Add a comment...

Ben Toews

Shared publicly  - 
 
I'm making our Defcon slides available for those who missed the talk.
BBQSQL. New dog, old trick. Exploits Blind SQL Injection. New dog, new trick. Fast; Easy; Gets those hard to reach spots. SQL What? Structured Query Language (SQL). Language for interacting with datab...
1
1
Jon Janego's profile photo
Add a comment...

Ben Toews

Shared publicly  - 
 
My talk got accepted for defcon. very excited
3
Add a comment...

Ben Toews

Shared publicly  - 
1
Add a comment...

Ben Toews

Shared publicly  - 
 
New blog post
One common and effective mitigation against Cross-Site Scripting (XSS) is to set the HTTPOnly flag on session cookies. This will generally prevent an attacker from stealing users’ session cookies with XSS. There are ways of circumventing this (e.g. the HTTP TRACE method), but generally speaking, it is fairly effective. That being said, an attacker can still cause significant damage without being able to steal the session cookie. A variety of clie...
1
Add a comment...

Ben Toews

Shared publicly  - 
 
This is the type of thing that I would have expected to have seen earlier....
http://xkcd.com/353/
[[ Guy 1 is talking to Guy 2, who is floating in the sky ]] Guy 1: You're flying! How? Guy 2: Python! Guy 2: I learned it last night! Everything is so simple! Guy 2: Hello world is just 'print...
1
Add a comment...

Ben Toews

Shared publicly  - 
 
Python requests module may have just changed my life.... https://gist.github.com/1608466
Private Gist. All pages are served over SSL and all pushing and pulling is done over SSH. No one may fork, clone, or view it unless they are given this private URL. Every gist with this icon ( private...
1
Add a comment...
Story
Tagline
...
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Currently
Chicago
Work
Employment
  • GitHub
    Application Security Guy / Hacker, 11 - present
  • Neohapsis
    Security Consultant, 6 - 11