| « IBM Lotus Sametime Standard V8.5 filenames. | DCT cost me some time today » |
BeNeLux OWASP Day 2009 - December 2nd
Next week, I'll be stepping out of my comfort zone and visit the BeNeLux OWASP Day 2009 with Tom.
It'll be a very interesting day on subjects that I think are underestimated in a lot of companies (including our own). We do have some protection in place, but after reading up on the subject over the last couple of weeks, I'm very much doubting we do enough.
I started checking our servers (hence my XSS Domino posts a week ago) and found out that we fail the test on our robots.txt. Elementry, but wrong. And that was just one test. So it'll be very intersting to learn more on the subject from the experts.
The Open Web Application Security Project (OWASP) is a worldwide free and open community focused on improving the security of application software. Our mission is to make application security visible, so that people and organizations can make informed decisions about true application security risks. Everyone is free to participate in OWASP and all of our materials are available under a free and open software license.
There are 20 seats available for this FREE event. You need to register up front.
The agenda for next week:
It'll be a very interesting day on subjects that I think are underestimated in a lot of companies (including our own). We do have some protection in place, but after reading up on the subject over the last couple of weeks, I'm very much doubting we do enough.
I started checking our servers (hence my XSS Domino posts a week ago) and found out that we fail the test on our robots.txt. Elementry, but wrong. And that was just one test. So it'll be very intersting to learn more on the subject from the experts.
The Open Web Application Security Project (OWASP) is a worldwide free and open community focused on improving the security of application software. Our mission is to make application security visible, so that people and organizations can make informed decisions about true application security risks. Everyone is free to participate in OWASP and all of our materials are available under a free and open software license.
There are 20 seats available for this FREE event. You need to register up front.
The agenda for next week:
| 12:00 - 12:30 | Registration |
| 12:30 - 15:30 | OWASP Live CD - WebGoat workshop - Erwin Geirnaert & Martin Knobloch |
| 15:30 - 16:00 | Break |
| 16:00 - 16:35 | Hybrid Analysis 2.0 - A demonstration of precision results correlation for improved software security testing - Roger Thornton |
| 16:35 - 17:10 | Secure development (for a secure planet). - Eoin Keary |
| 17:10 - 17:45 | SDLC pannel - Migchiel de Jong (Fortify), Bart De Win (Ascure), Florence Mottay (Cigital), moderator: Sebastien Deleersnyder (OWASP Foundation) |
| 17:45 - 18:25 | Dinner (Sandwiches) |
| 18:25 - 19:00 | SHA-3 Competition: The Quest for Long-Term Security in Cryptographic Hashing - Bart Preneel |
| 19:00 - 19:35 | WAF and Business Logic Attacks - Noa Bar-Yosef' |
| 19:35 - 20:10 | Compliance driven vulnerabilities - Colin Watson |
| 20:10 - 20:40 | Break |
| 20:40 - 21:15 | The OWASP Top 10 is dead, long live the OWASP Top 10 ! - Sebastien Deleersnyder |
| 21:15 - 21:50 | Web Application Firewalls: Detection, Bypassing and Exploitation - Sandro Gauci |
No feedback yet
Comment feed for this postLeave a comment
Yet another Domino/Websphere Admin blog.
About me:
Lotus Notes/Domino Admin
Websphere Commerce Admin
sceptic
critic
About me:
Lotus Notes/Domino Admin
Websphere Commerce Admin
sceptic
critic
