WebApp Sec: by subject

[Registrations Open] OWASP AppSec India Conference 2008
- Soi, Dhruv (Jul 14 2008)
[tool] ratproxy - passive web application security assessment tool
- Michal Zalewski (Jul 01 2008)
[WEB SECURITY] PR08-20: Bypassing ASP .NET "ValidateRequest" for Script Injection Attacks
- kuza55 (Sep 03 2008)
[WEB SECURITY] Surf Jack - HTTPS will not save you
- Martin O'Neal (Aug 11 2008)
[Webappsec] Corsaire whitepaper: Breaking the Bank (Vulnerabilities in Numeric Processing within Financial Applications)
- Martin O'Neal (Jul 16 2008)
- silky (Jul 16 2008)
- Martin O'Neal (Jul 16 2008)
- Martin O'Neal (Jul 16 2008)
- Martin O'Neal (Jul 16 2008)
- silky (Jul 15 2008)
- Andy Steingruebl (Jul 15 2008)
[White Paper] Abusing HTML 5 Structured Client-side Storage
- Alberto Trivero (Jul 20 2008)
Academic Papers on Web Services Security & Vulnerabilitie
- Robin Wood (Sep 19 2008)
Academic Papers on Web Services Security & Vulnerabilities
- Dave Wichers (Sep 19 2008)
- Christian Eric EDJENGUELE (Sep 19 2008)
- Mesut Timur (Sep 18 2008)
Attacking People through Web Apps (on Linux)
- Pete Herzog (Jul 28 2008)
Auditing mailing scripts for web app pentesters
- Adrian Pastor (Jul 16 2008)
- Brett Moore (Jul 15 2008)
- Adrian Pastor (Jul 15 2008)
BlachHat booking
- Paul Johnston (Jul 11 2008)
BSQL Hacker 0.9.0.7 - Advanced SQL Injection Framework / Tool
- Ferruh Mavituna (Aug 19 2008)
CFP now open for ClubHack2008 - India
- ClubHack (Jul 15 2008)
Compliance VS Pen-Test and there relative value
- Andrew van der Stock (Sep 02 2008)
- Rivest, Philippe (Sep 02 2008)
Corsaire whitepaper: Breaking the Bank (Vulnerabilities in Numeric Processing within Financial Applications)
- Martin O'Neal (Jul 15 2008)
Deep Blind SQL Injection Whitepaper
- Haroon Meer (Aug 21 2008)
- Ferruh Mavituna (Aug 19 2008)
Information Security Events in North America
- Garrett Gee (Jul 24 2008)
outlook web access authentication
- charlesparker (Jul 26 2008)
- agoldwater (Jul 25 2008)
- pgershwin (Jul 15 2008)
- Rohit Lists (Jul 11 2008)
- Paul Melson (Jul 11 2008)
- Andy Steingruebl (Jul 11 2008)
- Andy Steingruebl (Jul 11 2008)
- charlesparker (Jul 10 2008)
PacSec 2008 CFP (Deadline Sept. 1, Conference Nov. 12/13) and BA-Con 2008 Speakers (Sept. 30/ Oct. 1)
- Dragos Ruiu (Aug 26 2008)
Paper draft: Enough With Default Allow in Web Applications!
- Adrian Pastor (Jul 16 2008)
- Ivan Ristic (Jul 15 2008)
Recommended training course?
- Johannes B. Ullrich (Jul 15 2008)
- Kevin Johnson (Jul 15 2008)
- Jimmy Liang (Jul 12 2008)
Remote Desktop Security
- agoldwater (Sep 12 2008)
- pgershwin (Sep 11 2008)
- jaredmalthus (Sep 03 2008)
- Kish Pent (Sep 02 2008)
- henryclancy (Sep 01 2008)
- Kish Pent (Aug 31 2008)
- Erik Boles (Aug 30 2008)
- jaredmalthus (Aug 30 2008)
Remote Desktop Security - Compliance VS Pen-Test
- Kish Pent (Sep 03 2008)
- Paul Johnston (Sep 02 2008)
- Martin O'Neal (Sep 02 2008)
- Rivest, Philippe (Sep 02 2008)
RUXCON 2008 Final Call For Papers
- cfp_at_ruxcon.org.au (Sep 01 2008)
Surf Jack - HTTPS will not save you
- publists_at_enablesecurity.com (Aug 11 2008)
usabilty vs sescurity - return urls by parameter
- Gleb Paharenko (Jul 16 2008)
- MC Iglo (Jul 15 2008)
WASC Announcement: 2007 Web Application Security Statistics Published
- statistics_at_webappsec.org (Sep 08 2008)
Web Pen Test Honeypot
- mike_at_cenzic.com (Jul 16 2008)
- Alex Eden (Jul 15 2008)
- Thanasis Kostopoulos (Jul 12 2008)
- Thakrar, Saurabh (Jul 11 2008)
- Jeff Robertson (Jul 11 2008)
- Stevens, Scott (Jul 11 2008)
- James Landis (Jul 11 2008)
- Paul Melson (Jul 11 2008)
- Mathias Huber (Jul 11 2008)
- Jamie Riden (Jul 11 2008)
- Thanasis Kostopoulos (Jul 11 2008)
- John Evans (Jul 08 2008)