As promised I have uploaded the slides and the corresponding advisory for my graudit talk at the ruxcon meetup this month.
Results tagged “presentation” from Just Another Hacker
I am presenting at this months Ruxcon Monthly Meetup.
Date: Friday, 25th June
Time: 6:00PM
Location: RMIT University, City Campus
https://my.rmit.edu.au/portal/page/portal/RMITPortal/campusmaps?dsize=max
Room: Building 8, Level 9, Room 42 (008.09.042)
RMIT Building 8 entrance is off Swanston Street (just past Swanston and
La Trobe). Please take the lift to Level 9 and make your way to Room 42.
We will have directions posted up in the building.
Presentations
=============
Unsanitary Web Activities - Tim Noise (MovingData)
In the land of the internet, web developers are constantly rolling out
new applications and letting them free into the Internet. Many with
little knowledge or experience in security. They assume the users will
provide data in a manner they expect. This talk will cover webapp
security basics and commonplace attacks, showing you the effect this
oversight can have, and how to prevent it.
Pownage Coquillage: Real World Tales From The Trenches - Sash Biskup
(Stratsec)
In this talk the presenter will discuss various security incidents he
has been involved in during the course of his career. Starting with old
school bof through to modern day malware and blackmail. This isn't a
deep technical analysis of each incident but an overview of the
charateristics of each of the attacks and what the repurcussions were to
the organisation or individual.
Static analysis with Graudit - Eldar Marcussen
Graudit is a rough audit tool, that can be used to find vulnerabilities
in source code (C, ASP, .NET, JSP, PHP, Perl and Python). In this
presentation I will show how to get the most out of graudit.
I will present a graudit lightning talk at the 2009 AISA Annual Seminar Day.
As a result I will aim to release new versions more often, so I can present more bells and whistles. Expect graudit to version 1.6 by Christmas 2009!
For the full 2009 AISA ASD agenda please see http://www.aisa.org.au/index.php?page=243
As a result I will aim to release new versions more often, so I can present more bells and whistles. Expect graudit to version 1.6 by Christmas 2009!
For the full 2009 AISA ASD agenda please see http://www.aisa.org.au/index.php?page=243
I attended this months OWASP Melbourne meeting. It's been a while since I attended one and the talks this month were too good to miss.
Matthew Hackling - Australian Prudential Practice Guide 234
I missed the start of this thanks to my reading comprehension which saw me waste $4 on parking at Deloitte's old offices in QV. I'll be following the development on this closely.
The second presentation was
Richard Farrell - Static Source Code Analysis - What, why, when and how?
Although the world of static analysis hasn't had any earth shattering break throughs lately it was very good to see how the enterprise solution integrate and work. I wish I'd had more time to stay around and play, perhaps another time,
Matthew Hackling - Australian Prudential Practice Guide 234
I missed the start of this thanks to my reading comprehension which saw me waste $4 on parking at Deloitte's old offices in QV. I'll be following the development on this closely.
The second presentation was
Richard Farrell - Static Source Code Analysis - What, why, when and how?
Although the world of static analysis hasn't had any earth shattering break throughs lately it was very good to see how the enterprise solution integrate and work. I wish I'd had more time to stay around and play, perhaps another time,
