Archives for August 18th, 2011

18 Aug

Black Hat USA 2011: ToolsTube with David “SecurityNinja” Rook on Agnitio v2.0

NJ Ouchn Interview No Comment

Working with developers, security professionals and management to cultivate an environment where secure code is written and flaws found consistently requires both time and money. ...

18 Aug

Black Hat USA 2011: ToolsTube with Chris Schmidt on OWASP ESAPI API

NJ Ouchn Interview No Comment

ESAPI (The OWASP Enterprise Security API) is a free, open source, web application security control library that makes it easier for programmers to write lower-risk ...

18 Aug

Black Hat USA 2011: ToolsTube with Chuck Willis on OWASP Broken Web Applications

NJ Ouchn Interview No Comment

The Open Web Application Security Project (OWASP) Broken Web Applications project (www.owaspbwa.org) provides a free and open source virtual machine loaded with web applications containing ...

18 Aug

Securityninja’s life & times : Agnitio and Mobile Apps

NJ Ouchn Papers No Comment

Source Hi everyone, I’m finally back in the office after my annual trip to Las Vegas, still not fully over the jet lag but caffeine and a ...

18 Aug

Black Hat 2011: The Rise Of The Machines

NJ Ouchn Papers No Comment

Reposted with the permission of Tenable Security Source: http://blog.tenablesecurity.com/2011/08/blackhat-2011-the-rise-of-the-machines.html I attended the Black Hat Briefings this year after teaching the 'Advanced Vulnerability Scanning Using Nessus' course. There ...

[Paper] WASC: Static Analysis Technologies Evaluation Criteria v1.0 (SATEC)

The goal of the SATEC (Static Analysis Technologies Evaluation Criteria) project is to create a ...
[Report] For Their Eyes Only: The Commercialization of Digital Spying (The Citizen Lab)

The Citizen Lab is an interdisciplinary laboratory based at the Munk School of Global Affairs,at the University ...
The Art of Exploiting Injection Flaws at Black Hat Vegas 2013

(Article by Sumit 'Sid' Siddharth) Read other Sid's posts at www.notsosecure.com) So, you found a SQL ...
Book Review: Violent Python A Cookbook for Hackers, Forensic Analysts, Penetration Testers and Security Engineers

'Give a man a fish and you feed him for a day. Teach a man ...
(IN)SECURE Magazine Issue #37 Released

(IN)SECURE Magazine is a freely available digital security magazine discussing some of the hottest information security ...

R.I.P Brad “the Nurse” Smith – A Blackhat Icon passed away

Dear all, This is a very sad news for the Hackers & Blackhat Community. After a ...
A Day in the Blackhat Arsenal without Brad ‘TheNurse’ Smith

This year, The Blackhat Arsenal had a bitter aftertaste without the participation of a renowned ...
Blackhat USA 2012: Interview with Stach & Liu Team about Google Diggity Project

Francis Brown Stach & Liu, LLC Francis Brown, CISA, CISSP, MCSE, is a Managing Partner at Stach ...
Blackhat USA 2012: Interview with FishNet Team about SIRA

Justin Engler FishNet Security Justin Engler is a Senior Security Consultant for FishNet Security's Application Security practice. ...
Blackhat USA 2012: Interview with Raphael Mudge about Armitage (Also Introducing CobaltStrike)

Raphael Mudge Strategic Cyber LLC Raphael Mudge is the founder of Strategic Cyber LLC, a Washington, DC ...