Menu > Elements de la revue Twitter : - l'ensemble [tous] - par mots clé [tous] - par compte [tous] - le tagwall [voir]

---

S'abonner au fil RSS global de la revue Twitter

---

Précédents / Suivants

Les Tweets filtrés pour " planetlevel" (104 résultats)
S'abonner au fil RSS SecuObs pour le compte Twitter planetlevel


[2010-10-07] - 16:55:31 - @SushiDude @lcamtuf In this case, I was uninformed and hasty. Mea culpa. This is a browser problem.

[2010-10-04] - 03:04:59 - @scarybeasts Do you mean your attack would work if they followed the ESAPI XSS Protection Cheat Sheet and escaped the quote char?

[2010-09-26] - 05:36:54 - RT @securityshell: OWASP JBroFuzz v2.4 http://goo.gl/fb/GLLsD #tools #fuzzer

[2010-09-18] - 22:37:44 - Join the Stack Exchange based Application Security forum at Area 51 now! Please RT. http://bit.ly/bbNuQL

[2010-09-18] - 22:37:44 - @weldpond Static analysis *should* find flaws in ESAPI if they're there, right? Even without an app?

[2010-09-18] - 22:37:44 - @WeldPond How about sending us all the non-datatflow related issues in ESAPI?

[2010-09-18] - 22:37:44 - @jeremiahg Actually, we could probably design an encoded string that ESAPI would properly canonicalize and escape.

[2010-09-18] - 22:37:44 - @jeremiahg Irrelevant. Good enough to make attackers move is at least the OWASP T10.

[2010-09-18] - 22:37:44 - @DinisCruz This was never a security issue in ESAPI. Ever. Read the article.

[2010-09-18] - 22:37:44 - RT @_mwc: Want to follow OWASP news feed on twitter? Just follow @OWASP_feed. Been running for a few days now and is working very well!

[2010-07-27] - 07:12:02 - Aspect released free BlackHat tool today - JavaSnoop revolutionizes client pentesting! http://www.aspectsecurity.com/tools/javasnoop

[2010-06-12] - 18:04:31 - @jeremiahg @qobaiashi esapi HAS a waf filter, not IS a waf

[2010-06-04] - 07:56:04 - @jeremiahg OWASP has a cloud project that's making progress. Why hurl stones? http://tinyurl.com/owaspcloud

[2010-06-03] - 08:44:18 - owasp over the years has honed their ability to criticize other peoples code. ESAPI then becomes the answer to do it right. Brian Chess

[2010-05-27] - 02:24:50 - @jeremiahg Hey, what if ESAPI could be a floor wax and dessert topping too?

[2010-05-22] - 02:16:29 - @jeremiahg That's the whole purpose of ESAPI's SecurityConfiguration class - your enterprise security policy configured, tracked, managed

[2010-04-27] - 09:43:38 - @krvw yep - that doesn't even include multiple or nested encoding techniques. ESAPI canonicalize() is your friend.

[2010-04-23] - 10:30:07 - Free OWASP ESAPI WebEx Tonite at 6:00 PM EST - http://tinyurl.com/esapi1 (password: 3sAPIme)

[2010-04-22] - 23:17:17 - @krvw On my way to OWASP NOVA Chapter to talk about ESAPI in practice and architecture. Come ask tough questions!

[2010-04-18] - 13:43:43 - rt @OWASP_podcast: Releasing podcast 67,68,69,70 and 71 on Monday to celebrate the OWASP Top Ten release. It's official, Monday is the day.

[2010-04-14] - 22:01:53 - @securityninja @kuzushi ESAPI is fundamental security controls...primatives. Frameworks can use them but having them separate is important.

[2010-04-14] - 22:01:53 - ESAPI 2.0 rc6 is now live! http://code.google.com/p/owasp-esapi-java/

[2010-04-14] - 22:01:53 - Just wrote a tool to autogen stubs for all the missing code/libraries in a Java project. Big help in setting up static analysis.

[2010-03-02] - 03:50:38 - RT @jsreno: discussed web application security and OWASP ESAPI on the Redspin Blog http://wp.me/pymfm-ac

[2010-02-25] - 08:41:08 - RT @jeremiahg: Hilarious! Mentions OWASP, PCI, pwnz0red, PHP, SLAs, etc. Hitler Cloud Computing Security [video] http://bit.ly/97sUKe

[2010-02-19] - 03:57:58 - @jeremiahg The OWASP Contract is about transparency, understanding, and responsibility. Adhesion contracts don't work.

[2010-02-18] - 19:53:17 - RT @jeremiahg: The OWASP Security Ecosystem Project http://bit.ly/9bUNQr

[2010-02-18] - 04:28:50 - Weaknesses are academically interesting, *Risks* are important to business. That's why the OWASP T10 changed. http://bit.ly/35xVOk

[2010-02-10] - 11:41:50 - @DinisCruz We are planning to do the development of the Rugged approach at OWASP

[2010-02-01] - 22:01:11 - Lots http://bit.ly/cSwELt. RT @julianor: is OWASP ESAPI used in any real project?

[2010-02-01] - 22:01:11 - RT @krvw: Just renewed my OWASP membership for 2010. Did you? It's a great way of giving back to an org that gives away tons of great work.

[2010-02-01] - 01:35:15 - ESAPI 1.4.4 (for Java 1.4) is live https://lists.owasp.org/pipermail/esapi-dev/2010-January/000512.html

[2010-01-25] - 09:52:32 - RT @carne: #esapi for javascript 0.1.3 Released - http://code.google.com/p/owasp-esapi-js/

[2010-01-25] - 09:52:32 - RT @ddossot: The Moderated AppSec Feed from the OWASP Foundation is one of my most valuable RSS feeds.

[2010-01-18] - 20:56:38 - @JosephDawson You might find what you want in the OWASP Developer's Guide http://bit.ly/6N4KVD

[2010-01-18] - 09:06:08 - Aspect is pleased that Gartner Group is recommending the Secure Software Contract Annex we created for OWASP http://bit.ly/E194X

[2010-01-18] - 09:06:08 - RT @owasp_esapi: ESAPI 1.4.2 to be released later today (for organizations stuck on Java 1.4)

[2010-01-17] - 04:57:50 - RT @dcuthbert: So it seems my OWASP for Charities project has legs. This is fantastic. More to follow, good things will come out of this.

[2010-01-12] - 08:11:05 - @jeremiahg @rgaucher Would be great to see OWASP ASVS mapped too

[2010-01-10] - 11:36:26 - @richardveryard I'm Jeff Williams from OWASP. I'd like to talk w/you on why T10 is important part of OWASP arsenal - jeff.williams@owasp.org

[2010-01-07] - 20:28:23 - @richardveryard I'm trying to catch up here - have you written down your objections about OWASP?

[2010-01-05] - 04:11:55 - @jeremiahg Java EE still has NO support for escaping and lots of other stuff. You need something like ESAPI to make a secure app possible.

[2009-11-15] - 18:39:28 - @nate_mcfeters Why would it be slow? Are you still in 1998? In app waf means one trip through stack.

[2009-11-13] - 06:04:00 - Just selected as one of the 2009 JavaOne Rockstars for my XSS Proofing talk! http://bit.ly/cpmkE

[2009-11-13] - 06:04:00 - @arj Paper, slides, and code from the Enterprise Java Rootkits talk at BlackHat. Would love your feedback. http://bit.ly/3CogJA

[2009-11-13] - 06:04:00 - New OWASP AppSec Challenge released! Solve this JavaScript puzzler and win a free ticket to next year's conference. http://bit.ly/wNcqQ

[2009-11-13] - 06:04:00 - Aspect donates ESAPI WAF to OWASP - a free and open in applicationweb application firewall. http://bit.ly/CDjfD

[2009-11-13] - 06:04:00 - OWASP ESAPI Project has just released a free and open security API for Python. http://bit.ly/PRNgH

[2009-11-13] - 06:04:00 - THANK YOU OWASP Chapter and Project Leaders! Check out the plan to help fund your attendance at OWASP AppSec Conferences http://bit.ly/XkwlQ

[2009-11-13] - 06:04:00 - RT @jeremiahg: RT @securityninja: Output Validation using the OWASP ESAPI http://bit.ly/38KXPi

[2009-11-13] - 06:04:00 - RT @QuestOnSecurity: If you thought OWASP ESAPI was a good idea then you'll also find OWASP AppSensor interesting - http://bit.ly/hqZJW

[2009-11-13] - 06:04:00 - @miscsecurity I'm presenting on the ESAPI project and also about malicious developers and enterprise Java rootkits

Précédents / Suivants

---

S'abonner au fil RSS global de la revue Twitter

---

SecuToolBox :
Bluetooth Stack Smasher v0.6 / Bluetooth Stack Smasher v0.8 / Slides Bluetooth Eurosec 2006 / Exposé vidéo Windows Shellcode - Kostya Kortchinsky / Exposé audio Reverse Engineering - Nicolas Brulez / Exposé vidéo Securitech - Pierre Betouin / Secure WIFI WPA + EAP-TLS + Freeradius / Audit Windows / Captive Password Windows / USBDumper / USBDumper 2 / Hacking Hardware / WishMaster backdoor / DNS Auditing Tool / Ettercap SSL MITM / Exploit vulnérabilités Windows / Memory Dumper Kernel Hardening / Reverse Engineering / Scapy / SecUbuLIVE CD / Metasploit / eEye Blink Sec Center / eEye Retina Scanner + d'outils / + de tutoriels

Mini-Tagwall des articles publiés sur SecuObs :
sécurité, exploit, windows, attaque, outil, microsoft, réseau, audit, metasploit, vulnérabilité, système, virus, internet, usbsploit, données, source, linux, protocol, présentation, scanne, réseaux, scanner, bluetooth, conférence, reverse, shell, meterpreter, vista, rootkit, détection, mobile, security, malicieux, engineering, téléphone, paquet, trames, https, noyau, utilisant, intel, wishmaster, google, sysun, libre + de mots clés avec l'annuaire des articles publiés sur SecuObs

Mini-Tagwall de l'annuaire video :
curit, security, biomet, metasploit, biometric, cking, password, windows, botnet, defcon, tutorial, crypt, xploit, exploit, lockpicking, linux, attack, wireshark, vmware, rootkit, conference, network, shmoocon, backtrack, virus, conficker, elcom, etter, elcomsoft, server, meterpreter, openvpn, ettercap, openbs, iphone, shell, openbsd, iptables, securitytube, deepsec, source, office, systm, openssh, radio + de mots clés avec l'annuaire des videos

Mini-Tagwall des articles de la revue de presse :
security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone, server, inject, patch, apple, twitter, mobile, virus, ebook, facebook, vulnérabilité, crypt, source, linux, password, intel, research, virtual, phish, access, tutorial, trojan, social, privacy, firefox, adobe, overflow, office, cisco, conficker, botnet, pirate, sécurité + de mots clés avec l'annuaire de la revue de presse

Mini-Tagwall des Tweets de la revue Twitter :
security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall, network, twitter, vmware, windows, microsoft, compliance, vulnerability, python, engineering, source, kernel, crypt, social, overflow, nessus, crack, hacker, virus, iphone, patch, virtual, javascript, malware, conficker, pentest, research, email, password, adobe, apache, proxy, backtrack + de mots clés avec l'annuaire de la revue Twitter