Difference between revisions of "Podcast 2"

From OWASP
Jump to: navigation, search
(added my bio (Stephen Evans))
m
Line 8: Line 8:
  
 
OWASP News
 
OWASP News
 +
- December 16, 2008 - [http://securesoftware.blogspot.com/2008/12/owasp-security-testing-guide-vs-3.html OWASP testing guide version 3 has been officially released]
 
  - December 15, 2008 - [http://blog.watchfire.com/wfblog/2008/12/breaking-google-gears-cross-origin-communication-model.html Breaking Google Gears' Cross-Origin Communication Model]  
 
  - December 15, 2008 - [http://blog.watchfire.com/wfblog/2008/12/breaking-google-gears-cross-origin-communication-model.html Breaking Google Gears' Cross-Origin Communication Model]  
 
  - December 10, 2008 - [http://www.microsoft.com/technet/security/advisory/961051.mspx Vulnerability in Internet Explorer Could Allow Remote Code Execution]
 
  - December 10, 2008 - [http://www.microsoft.com/technet/security/advisory/961051.mspx Vulnerability in Internet Explorer Could Allow Remote Code Execution]

Revision as of 02:01, 18 December 2008

OWASP Podcast Series #2

Recording December 20, 2008

Participants

- Stephen Craig Evans is an independent software security consultant based in southeast Asia.
- Jim Manico is a Web Application Architect and Security Instructor for Aspect Security. 

OWASP News

- December 16, 2008 - OWASP testing guide version 3 has been officially released
- December 15, 2008 - Breaking Google Gears' Cross-Origin Communication Model 
- December 10, 2008 - Vulnerability in Internet Explorer Could Allow Remote Code Execution
- December 10, 2008 - Michael Zalewski, Googler, dumped core on his browser security knowledge.
- December 8, 2008  - 4 XSS flaws hit Facebook
- December 8, 2008  - Safe ActiveX?  Google wants to run native code over the web.

Interview with Stephen Craig Evans

- OWASP Summer of Code project, "Securing WebGoat using ModSecurity"