############################################################# # # COMPASS SECURITY http://www.csnc.ch/ # ############################################################# # # Topic: Tech-Article # Betreff: HTTP/S Content Filter Analysis - Finjan SurfinGate V5.6 # Autor: Jan Monsch & Ivan Buetler # Date: 27. January 2003 # ############################################################# Dear Reader As you might know - malicious mobile code contamination via web download becomes a real threat. HTTP content filter techniqe promises protection at your perimeter infrastructure. While penetrating the clients' infrastructure during a pen-test job, we are ready to use bypass technique in order to successfully exploiting the clients security mechanism. This article is focussed in Finjan SurfinGate HTTP content filter protection - and gives you a better understanding of threats and risks. We have used Finjan SurfinGate V5.6. The new V6.0 is already available. Find the analysis: http://www.csnc.ch/downloads/docs/techdocs/FinjanSurfinGate_Analysis_CSNC_V3.0.pdf Kind Regards Compass Security TEAM