Category:OWASP Skavenger Project

From OWASP
Revision as of 12:36, 24 April 2008 by Pauloc (Talk | contribs)

Jump to: navigation, search

(WORK IN PROGRESS)

Project Main Picture
Short description of what the project is about Skavenger is a web application security assessment toolkit which arised from many years of professional experience in the web application assessment field and is the result of nearly one your of work.

It passively analyzes traffic logged by various MITM proxies (such as WebScarab and Burp) as well as other sources (like Firefox's LiveHTTPHeader plugin) and helps to identify various kinds of possible vulnerabilities (such as XSS, CRLF injection, an insecure session management and several kinds of information disclosure). Skavenger's modular design allows the integration of custom scanning modules without any knowledge about the tool at all.

Skavenger is completely written in Perl and can be downloaded from: https://sourceforge.net/projects/skavenger/

Project leader Work in Progress.
Project mailing list Work in Progress.
XXXX XXXX
YYYY YYYYY
ZZZZ ZZZZ
KKKK KKKK
WWWW WWWW PPPPP
12:30-14:00 Lunch
14:00-14:40 Best Practices Guide: Web Application Firewalls (OWASP German chapter)

Alexander Meisel

Google-Hacking and Google-Shielding

Amichai Shulman

14:40-15:20 NTLM Relay Attacks

Eric Rachner

PHPIDS Monitoring attack surface activity

Mario Heiderich

15:20-15:50 Agile Security - Breaking the Waterfall Mindset of the Security Industry

Dave Wichers, Aspect Security

Security framework is not in the code

Sam Reghenzi

15:50-16:10 Break
16:10-17:00 Exploiting Online Games

Gary McGraw, Cigital

SHIELDS: metrics, tools and Internet services to improve security in application developments

Eva Coscia

17:00-18:00 Panel: “tbd”

Moderator:tbd Panelists: tbd

18:00-19:00 OWASP Leader Meeting - Organized by Matteo Meucci
19:00-21:00 OWASP Social Gathering: Dinner and Drinks at the Monasterium
Day 2 - May 22, 2008
Track 1: Track 2:
08:00-09:00 Coffee

Pages in category "OWASP Skavenger Project"

This category contains only the following page.