An interesting download to come out of the OWASP camp — books are now available for your reading pleasure. The initial group of books are: OWASP CLASP v1.2 OWASP Top 10 – 2007 Edition OWASP Top 10 – Testing – Legal 07′ OWASP WebGoat and WebScarab OWASP Code Review – 2007 (RC1) OWASP Evaluation and […] ↓ Read the rest of this entry…
So you don’t consider yourself to be XSS savy, but you would really like to do some free testing? Well look no farther…you just might have a solution. Introducing the XSSDB by GNUCitizen. The XSSDB (i’m assuming) is heading in the direction as the Metasploit Project, however, soley based on Cross-Site Scripting checks. A couple of […] ↓ Read the rest of this entry…
Billy Hoffman and Bryan Sullivan released a new book on AJAX Security this last month (or so). For those of you who aren’t familiar with Billy and Bryan, they are/were involved in the SPI Dynamics group before being acquired by HP Software in late 2007. I would highly recommend that you grab a copy of […] ↓ Read the rest of this entry…
It’s simply amazing to me that folks will fall for the marketing literature. Hacker Safe? I think not…. http://www.cioinsight.com/article2/0,1540,2246925,00.asp
My friend and coworker Douglas Haider is going to be speaking at the ISACA New Orleans chapter meeting on Valentine’s Day (Feb 14). So for any New Orleans-area readers, or for anyone that is going to be in the area on that day, you need to go see the talk. Douglas is a great security […] ↓ Read the rest of this entry…
Here’s another law (trying to get passed in New York) to try to stop sex offenders from getting on social networking sites, and in particular those sites where they might contact minors. I haven’t seen the bill yet, but from what I am reading, it is essentially useless. Just like all of these laws, it […] ↓ Read the rest of this entry…
©0-2012 An Information Security Place | Powered by WordPress with Easel | Subscribe: RSS | Back to Top ↑