Comments on: JavaScript Address Info

By: pdp

pdp — Mon, 02 Jul 2007 10:43:18 +0000

yes, this technique was presented to me by a guys called Dan. researching further the technique origins showed that it has been known for some time now.

By: Jordan

Jordan — Mon, 19 Mar 2007 05:18:51 +0000

fyi — when doing some digging, I found this reference to this exact same technique from a while back:

http://www.derkeiler.com/Maili...../0003.html

By: J@Â§Â¤Ã±’s Stack Trace » Blog Archive » Passive Javascript attacks go Mainstream

Thu, 15 Feb 2007 22:41:04 +0000

[...] Earlier this month SPI Dynamics released their paper on JavaScript portscanning. Thier port scanner is more capable than what Jeremiah Grossman released. Their paper describes a method for timing onerror events to do port scans, ping sweeps, basic fingerprinting and getting the nat’d address. [...]