archive.thotcon.org
THOTCON - Chicago's Hacking Conference - Speakers
http://archive.thotcon.org/speakers-0x1.html
Kevin A. Nassery. Jayson E. Street. We will address issues such as: How does SSL really work? Is redirecting from HTTP to HTTPS safe? Does the landi ng page need to be SSL? How bad are thos e browser warnings? What tools are avail able and how do I test my server's SSL c onfiguration? Should I be concerned abou t the MD5 rogue certificate or SSL strip? Kevin A. Nassery. TITLE: Where did those damn packets go? Jayson E. Street. Copy 2010 THOTCON NFP.
2014.appsecapac.org
招待講演者 | OWASP AppSec APAC 2014
http://2014.appsecapac.org/owasp-appsec-apac-2014/speakers/index.html
Darr; Skip to Main Content. Announce & News! 3月17,18日 Mobile Security: Securing Mobile Devices & Applications. 3月17日 Secure Web Development. 3月18日 Developer Security Training(Free). 3月18日 CISO training: Managing Web & Application Security OWASP for senior managers. 3月19日 Conference Day 1日目. 3月20日 Conference Day 2日目. Greetings to AppSec APAC. 山口 英 Suguru Yamaguchi. 2004年から2010年まで、日本政府内閣官房情報セキュリティ対策推進室 現内閣官房情報セキュリティセンター 情報セキュリティ補佐官に任命され、内閣官房情報セキュリティセンター NISC の設立に関わる政府の情報セキュリティ基本計画の設計と実装に携わった。
2012.appsecusa.org
Speakers | AppSecUSA
http://2012.appsecusa.org/speakers/index.html
Skip to primary content. Skip to secondary content. Movie Sneak Preview: Reboot. Perfect Etch Laser Etching. This stellar list of folks is just our Keynote and Invited Speakers. The entire lineup is on the All Speakers page. CSO and Chief Architect, Metasploit. Director of Security Assurance. Director, Security Intelligence. WhiteHat Security, Inc. VP and Principal Scientist. Manager, Network Security and Infrastructure. Founder, Principal Security Consultant. See all Speakers for AppSecUSA.
2011.appsecusa.org
Archive - OWASP AppSec USA 2011 - Your life is in the cloud.
http://2011.appsecusa.org/archive.html
Previous AppSec USA conferences and material from this site. Previous AppSec conferences hosted in the United States of America:. 2010 - Irvine, California. 2009 - Washington, District of Columbia. 2008 - New York, New York. OWASP APPSEC USA 2011 SPEAKER LINEUP - August 10, 2011. May 6, 2011. We're exhilarated to tell you that Moxie Marlinspike. Will be keynoting over lunch at OWASP AppSec USA 2011! See a short writeup on Moxie. Join a just-announced group of trainers. Who will run with the theme of Comm...
applicationips.blogspot.com
Application IPS: Detecting Attacks in HTTP Requests
http://applicationips.blogspot.com/2009/06/detecting-attacks-in-http-requests.html
Next generation application intrusion prevention systems. Tuesday, June 30, 2009. Detecting Attacks in HTTP Requests. Here are a few strategies when looking at the HTTP requests. 1 [RE1] Unexpected HTTP Commands. 2 [RE2] Unexpected HTTP Headers. Define a list of standard HTTP headers and custom headers set by the application (if any). If any other headers are received, then the user is searching for potential attack vectors. 3 [RE3] GET When Expecting POST. Within the application particular portions will...
security.blogoverflow.com
Why passwords should be hashed « Stack Exchange Security Blog
http://security.blogoverflow.com/2011/11/why-passwords-should-be-hashed
Explore other Stack Exchange communities. Why passwords should be hashed. Passwords should be hashed before storage or usage is a very common question, always triggering passionate debate. There is a simple and comprehensive answer ( use bcrypt, but PBKDF2 is not bad either. Which is not the end of the question since theoretically better solutions. The less commonly asked question is:. Should a password be hashed. This is what this post is about. Same input yields same output, for everybody). And the has...
applicationips.blogspot.com
Application IPS: Next Generation Application IPS
http://applicationips.blogspot.com/2009/06/next-generation-application-ips.html
Next generation application intrusion prevention systems. Saturday, June 27, 2009. Next Generation Application IPS. Intrusion prevention systems aren't just to protect network devices. An application IPS can protect the application against malicious attackers looking to exploit business logic flaws, execute cross site scripting attacks or perform any of the multitude of possible application attacks. WAF lacks business logic knowledge. Next generation IPS integrates with application.
SOCIAL ENGAGEMENT