[WEB SECURITY] Web application security - basics
Neil Matatall
nmatatal at uci.edu
Mon Aug 3 21:03:00 EDT 2009
<shameless-plug>
http://www.slideshare.net/xplodersuv/EducauseAnnualWebAppSecTutorialV3
</shameless-plug>
It's almost a year old, but it covers everything in the OWASP Top 10
(and a little more). (You should probably skip the architectural stuff
and go directly to slide 23). The demos correspond to WebGoat lessons.
I will most likely be updating this presentation soon, but then again
I've been saying that for a while...
Neil
Bruce Peifer wrote:
> Perhaps this paper would help?
> http://cwe.mitre.org/top25/pdf/2009_cwe_sans_top_25.pdf
>
>
> On Sun, Aug 2, 2009 at 9:38 AM, application.secure application.secure
> <application.secure at gmail.com <mailto:application.secure at gmail.com>>
> wrote:
>
> Hello,
>
> I'm looking a paper which explain the basics of application
> security (critical vulenrabilities, why web application are
> vulnerable, what are the impact of attacks, how can we test
> applications ...)
> There are a lot of document (especially on OWASP) but I don't find
> a document which summarize application security
>
> Thanks
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/attachments/20090803/b4039197/attachment.html>
More information about the websecurity
mailing list