Jeremiah Grossman

CEO of Bit Discovery, Professional Hacker, Black Belt in Brazilian Jiu-Jitsu, Off-Road Race Car Driver, Founder of WhiteHat Security, and Maui resident.

Friday, October 30, 2009

Best of Application Security (Friday, Oct. 30)

Ten of Application Security industry's coolest, most interesting, important, and entertaining links from the past week -- in no particular order. Regularly released until year end. Then the Best of Application Security 2009 will be selected!

  • Detecting Malice eBook
  • Black Box vs White Box. You are doing it wrong.
  • The Barack Obama Donations Site was Hacked…err, no it wasn’t.
  • New Q3'09 malware data, and the Dasient Infection Library
  • Infrastructure fingerprinting via XSS
  • DNS Rebinding in Firefox
  • Output Validation using the OWASP ESAPI
  • Google Wave as a Tool for Hacking
  • Announcing the release of the Enhanced Mitigation Evaluation Toolkit
  • Asset Valuation (couldn't settle on just one):
  • Lindstrom's Razor
  • A Grain of Salt for Digital Asset Values
  • What is “Lindstrom’s Razor”?
  • Information Asset Value: Some Cold-Hearted Calculations
  • How to Value Digital Assets (Web Sites, etc.)
  • On the value of ‘digital asset value’ for security decisions

Posted by Jeremiah Grossman at 8:22 AM

No comments:

Post a Comment

Newer Post Older Post Home
Subscribe to: Post Comments (Atom)

About Me

My photo
Jeremiah Grossman
Jeremiah Grossman's career spans nearly 20 years and has lived a literal lifetime in computer security to become one of the industry's biggest names. He has received a number of industry awards, been publicly thanked by Microsoft, Mozilla, Google, Facebook, and many others for his security research. Jeremiah has written hundreds of articles and white papers. As an industry veteran, he has been featured in hundreds of media outlets around the world. Jeremiah has been a guest speaker on six continents at hundreds of events including many top universities. All of this was after Jeremiah served as an information security officer at Yahoo!
View my complete profile

Links

  • Jeremiah's Main Website
  • Twitter Profile
  • Facebook Profile
  • LinkedIn Profile

Total Pageviews

Profile

Profile

TEDxMaui

TEDxMaui

Brazilian Jiu-Jitsu

Brazilian Jiu-Jitsu

BobbleJer

BobbleJer

My 1964 Lincoln Continental

My 1964 Lincoln Continental

Subscribe

Posts
Atom
Posts
Comments
Atom
Comments

Blog Archive

  • ►  2018 (5)
    • ►  August (1)
    • ►  July (1)
    • ►  May (1)
    • ►  March (2)
  • ►  2017 (3)
    • ►  April (1)
    • ►  February (2)
  • ►  2016 (7)
    • ►  October (1)
    • ►  June (1)
    • ►  May (4)
    • ►  March (1)
  • ►  2013 (1)
    • ►  January (1)
  • ►  2012 (2)
    • ►  April (1)
    • ►  January (1)
  • ►  2011 (18)
    • ►  December (1)
    • ►  June (1)
    • ►  May (1)
    • ►  March (3)
    • ►  February (5)
    • ►  January (7)
  • ►  2010 (62)
    • ►  December (9)
    • ►  November (2)
    • ►  October (1)
    • ►  September (3)
    • ►  August (2)
    • ►  July (5)
    • ►  June (5)
    • ►  May (3)
    • ►  April (3)
    • ►  March (6)
    • ►  February (12)
    • ►  January (11)
  • ▼  2009 (75)
    • ►  December (7)
    • ►  November (5)
    • ▼  October (8)
      • Best of Application Security (Friday, Oct. 30)
      • Black Box vs White Box. You are doing it wrong.
      • Best of Application Security (Friday, Oct. 23)
      • Best of Application Security (Friday, Oct. 16)
      • Best of Application Security (Friday, Oct. 9)
      • All about Website Password Policies
      • Cloud/SaaS will do for websites what PCI-DSS has n...
      • Best of Application Security (Friday, Oct. 2)
    • ►  September (5)
    • ►  August (11)
    • ►  July (6)
    • ►  June (4)
    • ►  May (5)
    • ►  April (4)
    • ►  March (4)
    • ►  February (5)
    • ►  January (11)
  • ►  2008 (117)
    • ►  December (6)
    • ►  November (2)
    • ►  October (2)
    • ►  September (8)
    • ►  August (8)
    • ►  July (10)
    • ►  June (16)
    • ►  May (16)
    • ►  April (19)
    • ►  March (11)
    • ►  February (4)
    • ►  January (15)
  • ►  2007 (195)
    • ►  December (5)
    • ►  November (19)
    • ►  October (11)
    • ►  September (10)
    • ►  August (13)
    • ►  July (22)
    • ►  June (17)
    • ►  May (25)
    • ►  April (18)
    • ►  March (21)
    • ►  February (12)
    • ►  January (22)
  • ►  2006 (123)
    • ►  December (11)
    • ►  November (21)
    • ►  October (20)
    • ►  September (29)
    • ►  August (16)
    • ►  July (15)
    • ►  June (3)
    • ►  January (8)
  • ►  2005 (99)
    • ►  November (2)
    • ►  October (3)
    • ►  September (5)
    • ►  August (9)
    • ►  July (14)
    • ►  June (15)
    • ►  May (13)
    • ►  April (9)
    • ►  March (11)
    • ►  February (7)
    • ►  January (11)
  • ►  2004 (14)
    • ►  December (7)
    • ►  November (6)
    • ►  June (1)
  • ►  2001 (2)
    • ►  November (1)
    • ►  March (1)
Picture Window theme. Powered by Blogger.