LUK
18-12-2008, 09:37
OWASP.TV (http://www.owasp.tv/) es el nuevo recurso publicado por el proyecto OWASP (http://es.wikipedia.org/wiki/OWASP) (Open Web Application Security Project - Proyecto de seguridad de aplicaciones Web Abiertas), el cual ofrece el registro en video de las diferentes conferencias /capítulos realizados por el proyecto OWASP.
http://img357.imageshack.us/img357/9025/owasplogo1yg5.gif
Estos videos son una grata solución para muchos de los que hemos deseado participar en estos eventos, pero que por diferentes motivos no podemos hacerlo.
En los recursos publicados actualmente podemos encontrar las presentaciones que hacen parte de la OWASP NYC AppSec 2008 Conference:
Analysis of the Web Hacking Incidents Database (WHID) (http://www.owasp.org/index.php/AppSecEU08_Trends_in_Web_Hacking_Incidents:_What%2 7s_hot_for_2008)
Web Application Security Road Map (http://www.webappsecroadmap.com/)
DHS Software Assurance Initiatives (https://buildsecurityin.us-cert.gov/swa/acqwg.html)
New 0-Day Browser Exploits: Clickjacking - yea, this is bad… (http://blogs.adobe.com/psirt/2008/09/thanks_to_jeremiah_grossman_an.html)
Security Assessing Java RMI (http://www.owasp.org/index.php/Security_Assessing_Java_RMI)
w3af - A Framework to own the web (http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference-SPEAKER-Andres_Riancho)
Multidisciplinary Bank Attacks (http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference-SPEAKER-GunterOllmann)
Spearfishing and the OWASP Live CD (http://www.owasp.org/index.php/Category:OWASP_Live_CD_Project)
Payment Card Data Security and the new Enterprise Java (http://www.owasp.org/index.php/Payment_Card_Data_Security_and_the_new_Enterprise_ Java)
Best Practices Guide for Web Application Firewalls (http://www.owasp.org/index.php/AppSecEU08_Best_Practices_Guide_Web_Application_Fi rewalls)
Red And Tiger Team Application Security Projects (http://www.trutv.com/video/tiger-team/tiger-team-101-1-of-4.html)
“Help Wanted” 7 Things You Need to Know APPSEC/INFOSEC Employment (http://www.infosecleaders.com/survey)
Open Reverse Benchmarking Project (http://reversebenchmarking.com/About.html)
NIST and SAMATE Static Analysis Tool Exposition (SATE) (http://www.owasp.org/index.php/NIST_SAMATE_Static_Analysis_Tool_Exposition_%28SAT E%29)
Lotus Notes/Domino Web Application Security (http://www.owasp.org/index.php/User_talk:Jian)
The OWASP Orizon Project: towards version 1.0 (http://www.owasp.org/index.php/Category:OWASP_Orizon_Project)
Building Usable Security (http://www.owasp.org/index.php/Building_Usable_Security)
OWASP EU Summit Portugal (http://www.owasp.org/index.php/OWASP_EU_Summit_2008)
Entre sus metas se espera que sean publicadas todas y cada una de las conferencias, esperemos que así sea.
Enlaces:
http://www.owasp.org/
http://www.dragonjar.org/owasptv-videos-en-linea-de-las-conferencias-owasp.xhtml
http://img357.imageshack.us/img357/9025/owasplogo1yg5.gif
Estos videos son una grata solución para muchos de los que hemos deseado participar en estos eventos, pero que por diferentes motivos no podemos hacerlo.
En los recursos publicados actualmente podemos encontrar las presentaciones que hacen parte de la OWASP NYC AppSec 2008 Conference:
Analysis of the Web Hacking Incidents Database (WHID) (http://www.owasp.org/index.php/AppSecEU08_Trends_in_Web_Hacking_Incidents:_What%2 7s_hot_for_2008)
Web Application Security Road Map (http://www.webappsecroadmap.com/)
DHS Software Assurance Initiatives (https://buildsecurityin.us-cert.gov/swa/acqwg.html)
New 0-Day Browser Exploits: Clickjacking - yea, this is bad… (http://blogs.adobe.com/psirt/2008/09/thanks_to_jeremiah_grossman_an.html)
Security Assessing Java RMI (http://www.owasp.org/index.php/Security_Assessing_Java_RMI)
w3af - A Framework to own the web (http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference-SPEAKER-Andres_Riancho)
Multidisciplinary Bank Attacks (http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference-SPEAKER-GunterOllmann)
Spearfishing and the OWASP Live CD (http://www.owasp.org/index.php/Category:OWASP_Live_CD_Project)
Payment Card Data Security and the new Enterprise Java (http://www.owasp.org/index.php/Payment_Card_Data_Security_and_the_new_Enterprise_ Java)
Best Practices Guide for Web Application Firewalls (http://www.owasp.org/index.php/AppSecEU08_Best_Practices_Guide_Web_Application_Fi rewalls)
Red And Tiger Team Application Security Projects (http://www.trutv.com/video/tiger-team/tiger-team-101-1-of-4.html)
“Help Wanted” 7 Things You Need to Know APPSEC/INFOSEC Employment (http://www.infosecleaders.com/survey)
Open Reverse Benchmarking Project (http://reversebenchmarking.com/About.html)
NIST and SAMATE Static Analysis Tool Exposition (SATE) (http://www.owasp.org/index.php/NIST_SAMATE_Static_Analysis_Tool_Exposition_%28SAT E%29)
Lotus Notes/Domino Web Application Security (http://www.owasp.org/index.php/User_talk:Jian)
The OWASP Orizon Project: towards version 1.0 (http://www.owasp.org/index.php/Category:OWASP_Orizon_Project)
Building Usable Security (http://www.owasp.org/index.php/Building_Usable_Security)
OWASP EU Summit Portugal (http://www.owasp.org/index.php/OWASP_EU_Summit_2008)
Entre sus metas se espera que sean publicadas todas y cada una de las conferencias, esperemos que así sea.
Enlaces:
http://www.owasp.org/
http://www.dragonjar.org/owasptv-videos-en-linea-de-las-conferencias-owasp.xhtml