Adam Baldwin is the Team Lead at Lift Security, a web application security consultancy and the Chief Security Officer at &yet (andyet.net). He at one time possessed a GCIA and CISSP. Adam is a highly knowledegable information security expert having created the DVCS pillaging toolkit, helmet: the security header middleware for node.js, a minor contributor to the W3AF project, and has previously spoken at DEF CON, Toorcon, Toorcamp, Djangcon, and JSconf.
48. SIZE MATTERS... RIGHT?
• Sometimes you need all the
character space you can get.
• No short-url GUID
• xss.io uses custom referrer-
based redirects instead
Tuesday, February 26, 13
49. EXPLOIT CREATOR
• Snippets for common tasks
• Quickly create and reference
dynamic payloads
Tuesday, February 26, 13
50. DEAD DROP BLIND XSS
API AND MANAGER
Tuesday, February 26, 13