Difference between revisions of "Podcast 2"

From OWASP
Jump to: navigation, search
m
m
Line 11: Line 11:
 
  - December 10, 2008 - [http://www.microsoft.com/technet/security/advisory/961051.mspx Vulnerability in Internet Explorer Could Allow Remote Code Execution]
 
  - December 10, 2008 - [http://www.microsoft.com/technet/security/advisory/961051.mspx Vulnerability in Internet Explorer Could Allow Remote Code Execution]
 
  - December 8, 2008 - [http://blogs.zdnet.com/security/?p=2308 4 XSS flaws hit Facebook]
 
  - December 8, 2008 - [http://blogs.zdnet.com/security/?p=2308 4 XSS flaws hit Facebook]
 +
- December, 2008 - [http://googleonlinesecurity.blogspot.com/2008/12/native-client-technology-for-running.html Google wants to run native code over the web. Safe ActiveX? fukami has done some work bypassing binary analysis.]
 +
- December, 2008 - [http://googleonlinesecurity.blogspot.com/2008/12/announcing-browser-security-handbook.html Michael Zalewski, Googler, dumped core on his browser security knowledge]
  
 
Interview withStephen Craig Evans
 
Interview withStephen Craig Evans
 
  - OWASP Summer of Code project, "Securing WebGoat using ModSecurity"
 
  - OWASP Summer of Code project, "Securing WebGoat using ModSecurity"
 
- December, 2008 - [http://googleonlinesecurity.blogspot.com/2008/12/native-client-technology-for-running.html Google wants to run native code over the web. Safe ActiveX? fukami has done some work bypassing binary analysis.]
 
- December, 2008 - [http://googleonlinesecurity.blogspot.com/2008/12/announcing-browser-security-handbook.html Michael Zalewski, Googler, dumped core on his browser security knowledge]
 

Revision as of 17:07, 17 December 2008

OWASP Podcast Series #2

Recording December 20, 2008

Participants

- Stephen Craig Evans
- Jim Manico is a Web Application Architect and Security Instructor for Aspect Security. 

OWASP News

- December 15, 2008 - Breaking Google Gears' Cross-Origin Communication Model 
- December 10, 2008 - Vulnerability in Internet Explorer Could Allow Remote Code Execution
- December 8, 2008 - 4 XSS flaws hit Facebook
- December, 2008 - Google wants to run native code over the web. Safe ActiveX? fukami has done some work bypassing binary analysis.
- December, 2008 - Michael Zalewski, Googler, dumped core on his browser security knowledge

Interview withStephen Craig Evans

- OWASP Summer of Code project, "Securing WebGoat using ModSecurity"