Jeremiah Grossman

A page to show up #1 on Google when searching for "Jeremiah" (Currently #5).
The prophet, TV show, and that pesky Owyang guy going down!

~~A page to show up #1 on Google when searching for "Jeremiah Grossman", and it FINALLY has!~~

Friday, August 21, 2009

Best of Application Security (Friday, Aug. 21)

Ten of Application Security industry's coolest, most interesting, important, and entertaining links from the past week -- in no particular order. Regularly released until year end. Then the Best of Application Security 2009 will be selected!

Security bugs crawl all over financial giant’s website (Ameriprise Website Riddled With Security Vulnerabilities For At Least Five Months)
TJX Hacker Charged With Heartland, Hannaford Breaches
Adobe Flex 3.3 SDK DOM-Based XSS
Web Security is about Scalability
Bypassing OWASP ESAPI XSS Protection inside Javascript
Facebook personal info leak vulnerability
Super-safe Web browsing
Overcoming Objections to an Application Security Program
Security No-Brainer #9: Application Vulnerability Scanners Should Communicate with Application Firewalls
WASC WHID 2009 Bi-Annual Report

Posted by Jeremiah Grossman at 9:01 AM

Share: Digg | Delicious | Stumble | Technorati | Reddit | XML

1 comments:

ramesh said...: This post has been removed by a blog administrator.; August 27, 2009 4:43 AM

Newer Post Older Post Home

Subscribe to: Post Comments (Atom)

About Me

Jeremiah Grossman: Jeremiah Grossman is the founder and Chief Technology Officer of WhiteHat Security [My Resume]

View my complete profile

Subscribe

Posts

Posts

Comments

Comments

Presentations

Mo' Money Mo' Problems
Get Rich or Die Trying
Top Ten Web Hacking Techniques (2008)
Website Security Statistics Report (Q1'09)

White Papers

Website Security 101
Vulnerability Assessment Plus Web Application Firewall (VA+WAF)
Technology Alone cannot Defeat Website Attacks: Understanding Technical vs. Logical Vulnerabilities
Top 5 Myths of Website Security
Seven Business Logic Flaws That Put Your Website At Risk
Cross Site Scripting (XSS) Worms and Viruses
Cross Site Request Forgery (CSRF)
Automated Scanning vs the OWASP Top Ten
10 Things You Should Know about Website Security

Twitter Updates (@jeremiahg)

Twitter Updates

follow me on Twitter

(IN)SECURE Magazine

(IN)SECURE Magazine

My Links

WhiteHat Security
Web Application Security Consortium
GGAFL
OWASP [San Jose]
CGI Security
ha.ckers.org
Maui Tours
Maui Real Estate

Blog Archive

► 2010 (2)
- ► January (2)
  - WASC Threat Classification to OWASP Top Ten RC1 Ma...
  - Best of Application Security (Friday, Jan. 1)

▼ 2009 (75)
- ► December (7)
- ► November (5)
- ► October (8)
- ► September (5)
- ▼ August (11)
- ► July (6)
- ► June (4)
- ► May (5)
  - 5 great Web security blogs you haven't heard of
  - WAFs and anti-SDL assumptions
- ► April (4)
- ► March (4)
- ► February (5)
- ► January (11)

► 2008 (117)
- ► December (6)
- ► November (2)
- ► October (2)
- ► September (8)
- ► August (8)
- ► July (10)
- ► June (16)
- ► May (16)
- ► April (19)
- ► March (11)
- ► February (4)
- ► January (15)

► 2007 (195)
- ► December (5)
- ► November (19)
- ► October (11)
- ► September (10)
- ► August (13)
- ► July (22)
- ► June (17)
- ► May (25)
- ► April (18)
- ► March (21)
- ► February (12)
- ► January (22)

► 2006 (123)
- ► December (11)
- ► November (21)
- ► October (20)
- ► September (29)
- ► August (16)
- ► July (15)
- ► June (3)
- ► January (8)

► 2005 (99)
- ► November (2)
- ► October (3)
- ► September (5)
- ► August (9)
- ► July (14)
- ► June (15)
- ► May (13)
- ► April (9)
- ► March (11)
- ► February (7)
- ► January (11)

► 2004 (14)
- ► December (7)
- ► November (6)
- ► June (1)

► 2001 (2)
- ► November (1)
- ► March (1)